oci_containerengine_cluster

This resource provides the Cluster resource in Oracle Cloud Infrastructure Container Engine service.

Create a new cluster.

Example Usage

resource "oci_containerengine_cluster" "test_cluster" {
	#Required
	compartment_id = var.compartment_id
	kubernetes_version = var.cluster_kubernetes_version
	name = var.cluster_name
	vcn_id = oci_core_vcn.test_vcn.id

	#Optional
	cluster_pod_network_options {
		#Required
		cni_type = var.cluster_cluster_pod_network_options_cni_type
	}
	defined_tags = {"Operations.CostCenter"= "42"}
	endpoint_config {

		#Optional
		is_public_ip_enabled = var.cluster_endpoint_config_is_public_ip_enabled
		nsg_ids = var.cluster_endpoint_config_nsg_ids
		subnet_id = oci_core_subnet.test_subnet.id
	}
	freeform_tags = {"Department"= "Finance"}
	image_policy_config {

		#Optional
		is_policy_enabled = var.cluster_image_policy_config_is_policy_enabled
		key_details {

			#Optional
			kms_key_id = oci_kms_key.test_key.id
		}
	}
	kms_key_id = oci_kms_key.test_key.id
	options {

		#Optional
		add_ons {

			#Optional
			is_kubernetes_dashboard_enabled = var.cluster_options_add_ons_is_kubernetes_dashboard_enabled
			is_tiller_enabled = var.cluster_options_add_ons_is_tiller_enabled
		}
		admission_controller_options {

			#Optional
			is_pod_security_policy_enabled = var.cluster_options_admission_controller_options_is_pod_security_policy_enabled
		}
		kubernetes_network_config {

			#Optional
			pods_cidr = var.cluster_options_kubernetes_network_config_pods_cidr
			services_cidr = var.cluster_options_kubernetes_network_config_services_cidr
		}
		open_id_connect_token_authentication_config {
			#Required
			is_open_id_connect_auth_enabled = var.cluster_options_open_id_connect_token_authentication_config_is_open_id_connect_auth_enabled

			#Optional
			ca_certificate = var.cluster_options_open_id_connect_token_authentication_config_ca_certificate
			client_id = oci_containerengine_client.test_client.id
			groups_claim = var.cluster_options_open_id_connect_token_authentication_config_groups_claim
			groups_prefix = var.cluster_options_open_id_connect_token_authentication_config_groups_prefix
			issuer_url = var.cluster_options_open_id_connect_token_authentication_config_issuer_url
			required_claims {

				#Optional
				key = var.cluster_options_open_id_connect_token_authentication_config_required_claims_key
				value = var.cluster_options_open_id_connect_token_authentication_config_required_claims_value
			}
			signing_algorithms = var.cluster_options_open_id_connect_token_authentication_config_signing_algorithms
			username_claim = var.cluster_options_open_id_connect_token_authentication_config_username_claim
			username_prefix = var.cluster_options_open_id_connect_token_authentication_config_username_prefix
		}					
		open_id_connect_discovery {

			#Optional
			is_open_id_connect_discovery_enabled = var.cluster_options_open_id_connect_discovery_is_open_id_connect_discovery_enabled
		}
		persistent_volume_config {

			#Optional
			defined_tags = {"Operations.CostCenter"= "42"}
			freeform_tags = {"Department"= "Finance"}
		}
		service_lb_config {

			#Optional
			defined_tags = {"Operations.CostCenter"= "42"}
			freeform_tags = {"Department"= "Finance"}
		}
		service_lb_subnet_ids = var.cluster_options_service_lb_subnet_ids
	}
	type = var.cluster_type
}

Argument Reference

The following arguments are supported:

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 1 hours), when creating the Cluster * update - (Defaults to 1 hours), when updating the Cluster * delete - (Defaults to 1 hours), when destroying the Cluster

Import

Clusters can be imported using the id, e.g.

$ terraform import oci_containerengine_cluster.test_cluster "id"