Skip to content

Instantly share code, notes, and snippets.

View AymenSegni's full-sized avatar

asegni AymenSegni

21 followers · 5 following
View GitHub Profile
@AymenSegni
AymenSegni / aws_eks_backend.tf
Created April 12, 2020 15:06
terraform {
backend "s3" {
region = "eu-central-1"
bucket = "terraform-eks-dev"
key = "terraform.tfstate"
encrypt = "true"
dynamodb_table = "terraform-state-lock"
}
}
@AymenSegni
AymenSegni / aws_eks_providr.tf
Created April 12, 2020 15:04
provider "aws" {
region = "eu-central-1"
version = "~> 2.57"
profile = "terraform-user"
}
@AymenSegni
AymenSegni / deploy_shared_vpc.tf
Last active April 12, 2020 15:53
# VPC Module
module "vpc" {
source = "../modules/shared_vpc"
cidr = var.cidr
azs = var.azs
private_subnets = var.private_subnets
public_subnets = var.public_subnets
environment = "krypton"
ingress_ips = var.ingress_ips
@AymenSegni
AymenSegni / shared_vpc_module.tf
Last active April 12, 2020 15:50
#
# VPC Resources
# * VPC
# * Subnets
# * Internet Gateway
# * Route Tables
# * Sec Groups
module "vpc" {
source = "terraform-aws-modules/vpc/aws"
@AymenSegni
AymenSegni / allow-trafic-backend-policy.yaml
Created January 3, 2020 02:46
kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
name: backend-policy
namespace: development
spec:
podSelector:
matchLabels:
app: webapp
role: backend
@AymenSegni
AymenSegni / backend-policy.yaml
Created January 3, 2020 02:26
kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
name: backend-policy
namespace: development
spec:
podSelector:
matchLabels:
app: webapp
role: backend
@AymenSegni
AymenSegni / basic-azure-ad-binding.yaml
Created December 28, 2019 21:42
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: contoso-cluster-admins
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cluster-admin
subjects:
- apiGroup: rbac.authorization.k8s.io
@AymenSegni
AymenSegni / aks-with-aad-main-deployment.tf
Created December 28, 2019 19:01
# Cluster Resource Group
resource "azurerm_resource_group" "aks" {
name = var.resource_group_name
location = var.location
}
# AKS Cluster Network
module "aks_network" {
source = "../modules/aks_network"
subnet_name = var.subnet_name
@AymenSegni
AymenSegni / aad-aks-cluster.tf
Last active April 5, 2020 15:33
resource "azurerm_kubernetes_cluster" "cluster" {
name = var.cluster_name
location = var.location
resource_group_name = var.resource_group_name
dns_prefix = var.dns_prefix
kubernetes_version = var.kubernetes_version
agent_pool_profile {
name = var.agent_pool_name
count = var.node_count
@AymenSegni
AymenSegni / aad-aks-integration.sh
Last active June 28, 2020 19:01
#!/bin/bash
# Provide your own unique aksname within the Azure AD tenant
aksname="run-it-on-cloud"
resourcegroup="runItOnCloud"
location="westeurope"
# Create the Azure AD application Server
serverApplicationId=$(az ad app create \
--display-name "${aksname}Server" \