ibmcloud_schematics_bigip_next_for_kubernetes_2_3_testing/data.tf at main · f5devcentral/ibmcloud_schematics_bigip_next_for_kubernetes_2_3_testing · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
# ============================================================
# Resource Group
# ============================================================

data "ibm_resource_groups" "all" {}

data "ibm_resource_group" "resource_group" {
  name = var.ibmcloud_resource_group != "" ? var.ibmcloud_resource_group : [
    for rg in data.ibm_resource_groups.all.resource_groups :
    rg.name if rg.is_default == true
  ][0]
}

# ============================================================
# Cluster (always required)
# ============================================================

data "ibm_container_vpc_cluster" "cluster" {
  name              = var.roks_cluster_name_or_id
  resource_group_id = data.ibm_resource_group.resource_group.id
}

# ============================================================
# Cluster Jumphost Data Sources
# Provider: ibm (default — cluster region)
# ============================================================

# ibm_container_vpc_cluster does not export vpc_id in provider 2.x.
# Derive it by looking up a worker subnet and reading its vpc attribute.
data "ibm_is_subnet" "cluster_worker_subnet" {
  count      = var.testing_create_cluster_jumphosts ? 1 : 0
  identifier = data.ibm_container_vpc_cluster.cluster.worker_pools[0].zones[0].subnets[0].id
}

# Cluster VPC — resolved via worker subnet
data "ibm_is_vpc" "cluster_vpc" {
  count      = var.testing_create_cluster_jumphosts ? 1 : 0
  identifier = data.ibm_is_subnet.cluster_worker_subnet[0].vpc
}

# All availability zones in the cluster region
data "ibm_is_zones" "cluster_region_zones" {
  count  = var.testing_create_cluster_jumphosts ? 1 : 0
  region = var.ibmcloud_cluster_region
}

# Ubuntu images in cluster region
data "ibm_is_images" "cluster_ubuntu_images" {
  count      = var.testing_create_cluster_jumphosts ? 1 : 0
  visibility = "public"
  status     = "available"
}

# Instance profiles in cluster region (only when auto-selecting)
data "ibm_is_instance_profiles" "cluster_profiles" {
  count = (var.testing_create_cluster_jumphosts && var.testing_jumphost_profile == "") ? 1 : 0
}

# SSH key in cluster region
data "ibm_is_ssh_key" "cluster_ssh_key" {
  count = (var.testing_create_cluster_jumphosts && var.testing_ssh_key_name != "") ? 1 : 0
  name  = var.testing_ssh_key_name
}

# Existing public gateways in the cluster region — used to attach cluster
# jumphost subnets to per-zone PGWs that already exist in the cluster VPC
# (IBM Cloud quota: one PGW per zone per VPC)
data "ibm_is_public_gateways" "cluster_pgws" {
  count = var.testing_create_cluster_jumphosts ? 1 : 0
}

# ============================================================
# TGW Jumphost Data Sources
# Provider: ibm.vpc_region (client VPC region)
# ============================================================

# Existing client VPC — looked up when not creating a new one
data "ibm_is_vpc" "existing_client_vpc" {
  count    = (var.testing_create_tgw_jumphost && !var.testing_create_client_vpc) ? 1 : 0
  provider = ibm.vpc_region
  name     = var.testing_client_vpc_name
}

# First availability zone in the client VPC region (for jumphost placement)
data "ibm_is_zones" "vpc_region_zones" {
  count    = var.testing_create_tgw_jumphost ? 1 : 0
  provider = ibm.vpc_region
  region   = var.testing_client_vpc_region
}

# Ubuntu images in client VPC region
data "ibm_is_images" "tgw_ubuntu_images" {
  count      = var.testing_create_tgw_jumphost ? 1 : 0
  provider   = ibm.vpc_region
  visibility = "public"
  status     = "available"
}

# Instance profiles in client VPC region (only when auto-selecting)
data "ibm_is_instance_profiles" "tgw_profiles" {
  count    = (var.testing_create_tgw_jumphost && var.testing_jumphost_profile == "") ? 1 : 0
  provider = ibm.vpc_region
}

# SSH key in client VPC region
data "ibm_is_ssh_key" "tgw_ssh_key" {
  count    = (var.testing_create_tgw_jumphost && var.testing_ssh_key_name != "") ? 1 : 0
  provider = ibm.vpc_region
  name     = var.testing_ssh_key_name
}

# Transit Gateway (global resource — uses default provider)
data "ibm_tg_gateway" "transit_gateway" {
  count = (var.testing_create_tgw_jumphost && var.testing_transit_gateway_name != "") ? 1 : 0
  name  = var.testing_transit_gateway_name
}