Full doc for private-only cluster

Question

Full doc for private-only cluster

vburckhardt opened this issue 2 years ago · 1 comments

Description

Some of the scripts currently assume connectivity between machine running terraform and kube master, which may not hold true in private only cluster https://github.com/terraform-ibm-modules/terraform-ibm-base-ocp-vpc/blob/main/main.tf#L302

Suggest to skip this check if private endpoint, and document path for now (eg: using schematics agent)

New or affected modules

ocp-base-module

By submitting this issue, you agree to follow our Code of Conduct

Answer 1 · 2023-03-01T13:39:59.000Z

Here is output when setting disable_public_endpoint = false and running on terraform apply on an environment that does not have access to private endpoint (166.9.34.54)

module.ocp_base.ibm_container_vpc_worker_pool.pool["zone-2"]: Creation complete after 8m23s [id=cfvk0ogl0f2132vsno4g/cfvk0ogl0f2132vsno4g-82c32f5]
╷
│ Error: [ERROR] Error downloading the cluster config [cfvk0ogl0f2132vsno4g]: Get "https://c108-e.private.eu-gb.containers.cloud.ibm.com:30591/.well-known/oauth-authorization-server": dial tcp 166.9.34.54:30591: i/o timeout
│
│ with module.ocp_base.data.ibm_container_cluster_config.cluster_config,
│ on ../../main.tf line 200, in data "ibm_container_cluster_config" "cluster_config":
│ 200: data "ibm_container_cluster_config" "cluster_config" {
│
╵