はじめに
今回は、Terraformを使用してGoogleCloud上にGKEクラスタを作成してアプリケーションを実行してみたいと思います。
以下の記事を参考に進めていきます。

手順
以下の手順で進めていきます。
- GKEAPIの有効化
- ロールを確認
- ロールを付与
- 環境設定
- TerraformでGKEクラスタをデプロイ
- 動作確認
GKEAPIの有効化
以下のAPIコンソールに移動して、KubernetesEngineAPIを有効化します。
ロールを確認
以下のIAMコンソールにアクセスして、プロジェクトに後述のロールが付与されていることを確認します。
roles/container.admin, roles/compute.networkAdmin, roles/iam.serviceAccountUser
ロールを付与
上記のロールがない場合は、以下の手順で追加します。
プロジェクトを選択>アクセスを許可>新しいプリンシパルにアカウントのメールアドレスを追加>必要なロールを選択>保存
環境設定
ローカル環境かCloudShellを使用して、環境構築していきます。
任意のターミナルを開き、以下のコマンドを順に実行します。
※設定済みでしたら読み飛ばしてください
# デフォルトプロジェクトを指定
gcloud config set project PROJECT_ID
# GitHubリポジトリをクローン
git clone <https://github.com/terraform-google-modules/terraform-docs-samples.git> --single-branch
# ディレクトリを変更
cd terraform-docs-samples/gke/quickstart/autopilot
以下で環境変数にプロジェクトIDを設定してもOKです。
# 環境変数に取得したプロジェクトIDを設定
export GCP_PROJECT_ID=$(gcloud config get-value project)
# 設定内容を確認
env | grep GCP_PROJECT_ID
TerraformでGKEクラスタをデプロイ
では、cloneでダウンロードしたGKEクラスタをデプロイしていきます。
Terraformをプロジェクト内で初期化
# terraformを初期化
% terraform init
Initializing the backend...
Initializing provider plugins...
- Finding latest version of hashicorp/google...
- Finding latest version of hashicorp/kubernetes...
- Finding latest version of hashicorp/time...
- Installing hashicorp/kubernetes v2.31.0...
- Installed hashicorp/kubernetes v2.31.0 (signed by HashiCorp)
- Installing hashicorp/time v0.11.2...
- Installed hashicorp/time v0.11.2 (signed by HashiCorp)
- Installing hashicorp/google v5.33.0...
- Installed hashicorp/google v5.33.0 (signed by HashiCorp)
Terraform has created a lock file .terraform.lock.hcl to record the provider
selections it made above. Include this file in your version control repository
so that Terraform can guarantee to make the same selections by default when
you run "terraform init" in the future.
Terraform has been successfully initialized!
You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.
If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
Terraformの実行計画を確認
以下のコマンドを実行して、作成されるリソースを確認します。
# terraformのドライランを実行して、想定作成リソースを確認する
% terraform plan
data.google_client_config.default: Reading...
data.google_client_config.default: Read complete after 0s [id=projects/<null>/regions/<null>/zones/<null>]
╷
│ Error: Failed to retrieve project, pid: , err: project: required field is not set
│
│ with google_compute_network.default,
│ on cluster.tf line 18, in resource "google_compute_network" "default":
│ 18: resource "google_compute_network" "default" {
上記のエラーが出た場合は、以下のコマンドを実行してプロジェクトIDを登録します。
# CloudSDKにデフォルトプロジェクト名を指定
gcloud config set project YOUR_PROJECT_NAME
# 環境変数にプロジェクト名を指定
export GOOGLE_PROJECT=YOUR_PROJECT_NAME
以下のような出力になれば成功です。
※クラスターをデプロイするのに必要な他のリソースも作成するため非常に長い出力になります
% terraform plan
data.google_client_config.default: Reading...
data.google_client_config.default: Read complete after 0s [id=projects/"test-project-1-419603"/regions/<null>/zones/<null>]
Terraform used the selected providers to generate the following execution plan. Resource
actions are indicated with the following symbols:
+ create
Terraform will perform the following actions:
# google_compute_network.default will be created
+ resource "google_compute_network" "default" {
+ auto_create_subnetworks = false
+ delete_default_routes_on_create = false
+ enable_ula_internal_ipv6 = true
+ gateway_ipv4 = (known after apply)
+ id = (known after apply)
+ internal_ipv6_range = (known after apply)
+ mtu = (known after apply)
+ name = "example-network"
+ network_firewall_policy_enforcement_order = "AFTER_CLASSIC_FIREWALL"
+ numeric_id = (known after apply)
+ project = "test-project-1-419603"
+ routing_mode = (known after apply)
+ self_link = (known after apply)
}
# google_compute_subnetwork.default will be created
+ resource "google_compute_subnetwork" "default" {
+ creation_timestamp = (known after apply)
+ external_ipv6_prefix = (known after apply)
+ fingerprint = (known after apply)
+ gateway_address = (known after apply)
+ id = (known after apply)
+ internal_ipv6_prefix = (known after apply)
+ ip_cidr_range = "10.0.0.0/16"
+ ipv6_access_type = "INTERNAL"
+ ipv6_cidr_range = (known after apply)
+ name = "example-subnetwork"
+ network = (known after apply)
+ private_ip_google_access = (known after apply)
+ private_ipv6_google_access = (known after apply)
+ project = "test-project-1-419603"
+ purpose = (known after apply)
+ region = "us-central1"
+ secondary_ip_range = [
+ {
+ ip_cidr_range = "192.168.0.0/24"
+ range_name = "services-range"
},
+ {
+ ip_cidr_range = "192.168.1.0/24"
+ range_name = "pod-ranges"
},
]
+ self_link = (known after apply)
+ stack_type = "IPV4_IPV6"
}
# google_container_cluster.default will be created
+ resource "google_container_cluster" "default" {
+ cluster_ipv4_cidr = (known after apply)
+ datapath_provider = (known after apply)
+ default_max_pods_per_node = (known after apply)
+ deletion_protection = false
+ enable_autopilot = true
+ enable_cilium_clusterwide_network_policy = false
+ enable_intranode_visibility = true
+ enable_kubernetes_alpha = false
+ enable_l4_ilb_subsetting = true
+ enable_legacy_abac = false
+ enable_shielded_nodes = true
+ endpoint = (known after apply)
+ id = (known after apply)
+ label_fingerprint = (known after apply)
+ location = "us-central1"
+ logging_service = (known after apply)
+ master_version = (known after apply)
+ monitoring_service = (known after apply)
+ name = "example-autopilot-cluster"
+ network = (known after apply)
+ networking_mode = "VPC_NATIVE"
+ node_locations = (known after apply)
+ node_version = (known after apply)
+ operation = (known after apply)
+ private_ipv6_google_access = (known after apply)
+ project = (known after apply)
+ self_link = (known after apply)
+ services_ipv4_cidr = (known after apply)
+ subnetwork = (known after apply)
+ tpu_ipv4_cidr_block = (known after apply)
+ addons_config {
+ cloudrun_config {
+ disabled = (known after apply)
+ load_balancer_type = (known after apply)
}
+ config_connector_config {
+ enabled = (known after apply)
}
+ dns_cache_config {
+ enabled = (known after apply)
}
+ gce_persistent_disk_csi_driver_config {
+ enabled = (known after apply)
}
+ gcp_filestore_csi_driver_config {
+ enabled = (known after apply)
}
+ gcs_fuse_csi_driver_config {
+ enabled = (known after apply)
}
+ gke_backup_agent_config {
+ enabled = (known after apply)
}
+ horizontal_pod_autoscaling {
+ disabled = (known after apply)
}
+ http_load_balancing {
+ disabled = (known after apply)
}
+ network_policy_config {
+ disabled = (known after apply)
}
+ stateful_ha_config {
+ enabled = (known after apply)
}
}
+ authenticator_groups_config {
+ security_group = (known after apply)
}
+ cluster_autoscaling {
+ autoscaling_profile = (known after apply)
+ enabled = (known after apply)
+ auto_provisioning_defaults {
+ boot_disk_kms_key = (known after apply)
+ disk_size = (known after apply)
+ disk_type = (known after apply)
+ image_type = (known after apply)
+ min_cpu_platform = (known after apply)
+ oauth_scopes = (known after apply)
+ service_account = (known after apply)
+ management {
+ auto_repair = (known after apply)
+ auto_upgrade = (known after apply)
+ upgrade_options = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ upgrade_settings {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
+ strategy = (known after apply)
+ blue_green_settings {
+ node_pool_soak_duration = (known after apply)
+ standard_rollout_policy {
+ batch_node_count = (known after apply)
+ batch_percentage = (known after apply)
+ batch_soak_duration = (known after apply)
}
}
}
}
+ resource_limits {
+ maximum = (known after apply)
+ minimum = (known after apply)
+ resource_type = (known after apply)
}
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ cost_management_config {
+ enabled = (known after apply)
}
+ database_encryption {
+ key_name = (known after apply)
+ state = (known after apply)
}
+ default_snat_status {
+ disabled = (known after apply)
}
+ gateway_api_config {
+ channel = (known after apply)
}
+ identity_service_config {
+ enabled = (known after apply)
}
+ ip_allocation_policy {
+ cluster_ipv4_cidr_block = (known after apply)
+ cluster_secondary_range_name = "pod-ranges"
+ services_ipv4_cidr_block = (known after apply)
+ services_secondary_range_name = "services-range"
+ stack_type = "IPV4_IPV6"
+ pod_cidr_overprovision_config {
+ disabled = (known after apply)
}
}
+ logging_config {
+ enable_components = (known after apply)
}
+ master_auth {
+ client_certificate = (known after apply)
+ client_key = (sensitive value)
+ cluster_ca_certificate = (known after apply)
+ client_certificate_config {
+ issue_client_certificate = (known after apply)
}
}
+ master_authorized_networks_config {
+ gcp_public_cidrs_access_enabled = (known after apply)
+ cidr_blocks {
+ cidr_block = (known after apply)
+ display_name = (known after apply)
}
}
+ mesh_certificates {
+ enable_certificates = (known after apply)
}
+ monitoring_config {
+ enable_components = (known after apply)
+ advanced_datapath_observability_config {
+ enable_metrics = (known after apply)
+ enable_relay = (known after apply)
+ relay_mode = (known after apply)
}
+ managed_prometheus {
+ enabled = (known after apply)
}
}
+ node_config {
+ boot_disk_kms_key = (known after apply)
+ disk_size_gb = (known after apply)
+ disk_type = (known after apply)
+ effective_taints = (known after apply)
+ enable_confidential_storage = (known after apply)
+ guest_accelerator = (known after apply)
+ image_type = (known after apply)
+ labels = (known after apply)
+ local_ssd_count = (known after apply)
+ logging_variant = (known after apply)
+ machine_type = (known after apply)
+ metadata = (known after apply)
+ min_cpu_platform = (known after apply)
+ node_group = (known after apply)
+ oauth_scopes = (known after apply)
+ preemptible = (known after apply)
+ resource_labels = (known after apply)
+ resource_manager_tags = (known after apply)
+ service_account = (known after apply)
+ spot = (known after apply)
+ tags = (known after apply)
+ advanced_machine_features {
+ enable_nested_virtualization = (known after apply)
+ threads_per_core = (known after apply)
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
+ ephemeral_storage_local_ssd_config {
+ local_ssd_count = (known after apply)
}
+ fast_socket {
+ enabled = (known after apply)
}
+ gcfs_config {
+ enabled = (known after apply)
}
+ gvnic {
+ enabled = (known after apply)
}
+ host_maintenance_policy {
+ maintenance_interval = (known after apply)
}
+ kubelet_config {
+ cpu_cfs_quota = (known after apply)
+ cpu_cfs_quota_period = (known after apply)
+ cpu_manager_policy = (known after apply)
+ pod_pids_limit = (known after apply)
}
+ linux_node_config {
+ cgroup_mode = (known after apply)
+ sysctls = (known after apply)
}
+ local_nvme_ssd_block_config {
+ local_ssd_count = (known after apply)
}
+ reservation_affinity {
+ consume_reservation_type = (known after apply)
+ key = (known after apply)
+ values = (known after apply)
}
+ secondary_boot_disks {
+ disk_image = (known after apply)
+ mode = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ sole_tenant_config {
+ node_affinity {
+ key = (known after apply)
+ operator = (known after apply)
+ values = (known after apply)
}
}
+ taint {
+ effect = (known after apply)
+ key = (known after apply)
+ value = (known after apply)
}
+ workload_metadata_config {
+ mode = (known after apply)
}
}
+ node_pool {
+ initial_node_count = (known after apply)
+ instance_group_urls = (known after apply)
+ managed_instance_group_urls = (known after apply)
+ max_pods_per_node = (known after apply)
+ name = (known after apply)
+ name_prefix = (known after apply)
+ node_count = (known after apply)
+ node_locations = (known after apply)
+ version = (known after apply)
+ autoscaling {
+ location_policy = (known after apply)
+ max_node_count = (known after apply)
+ min_node_count = (known after apply)
+ total_max_node_count = (known after apply)
+ total_min_node_count = (known after apply)
}
+ management {
+ auto_repair = (known after apply)
+ auto_upgrade = (known after apply)
}
+ network_config {
+ create_pod_range = (known after apply)
+ enable_private_nodes = (known after apply)
+ pod_ipv4_cidr_block = (known after apply)
+ pod_range = (known after apply)
+ network_performance_config {
+ total_egress_bandwidth_tier = (known after apply)
}
+ pod_cidr_overprovision_config {
+ disabled = (known after apply)
}
}
+ node_config {
+ boot_disk_kms_key = (known after apply)
+ disk_size_gb = (known after apply)
+ disk_type = (known after apply)
+ effective_taints = (known after apply)
+ enable_confidential_storage = (known after apply)
+ guest_accelerator = (known after apply)
+ image_type = (known after apply)
+ labels = (known after apply)
+ local_ssd_count = (known after apply)
+ logging_variant = (known after apply)
+ machine_type = (known after apply)
+ metadata = (known after apply)
+ min_cpu_platform = (known after apply)
+ node_group = (known after apply)
+ oauth_scopes = (known after apply)
+ preemptible = (known after apply)
+ resource_labels = (known after apply)
+ resource_manager_tags = (known after apply)
+ service_account = (known after apply)
+ spot = (known after apply)
+ tags = (known after apply)
+ advanced_machine_features {
+ enable_nested_virtualization = (known after apply)
+ threads_per_core = (known after apply)
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
+ ephemeral_storage_local_ssd_config {
+ local_ssd_count = (known after apply)
}
+ fast_socket {
+ enabled = (known after apply)
}
+ gcfs_config {
+ enabled = (known after apply)
}
+ gvnic {
+ enabled = (known after apply)
}
+ host_maintenance_policy {
+ maintenance_interval = (known after apply)
}
+ kubelet_config {
+ cpu_cfs_quota = (known after apply)
+ cpu_cfs_quota_period = (known after apply)
+ cpu_manager_policy = (known after apply)
+ pod_pids_limit = (known after apply)
}
+ linux_node_config {
+ cgroup_mode = (known after apply)
+ sysctls = (known after apply)
}
+ local_nvme_ssd_block_config {
+ local_ssd_count = (known after apply)
}
+ reservation_affinity {
+ consume_reservation_type = (known after apply)
+ key = (known after apply)
+ values = (known after apply)
}
+ secondary_boot_disks {
+ disk_image = (known after apply)
+ mode = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ sole_tenant_config {
+ node_affinity {
+ key = (known after apply)
+ operator = (known after apply)
+ values = (known after apply)
}
}
+ taint {
+ effect = (known after apply)
+ key = (known after apply)
+ value = (known after apply)
}
+ workload_metadata_config {
+ mode = (known after apply)
}
}
+ placement_policy {
+ policy_name = (known after apply)
+ tpu_topology = (known after apply)
+ type = (known after apply)
}
+ queued_provisioning {
+ enabled = (known after apply)
}
+ upgrade_settings {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
+ strategy = (known after apply)
+ blue_green_settings {
+ node_pool_soak_duration = (known after apply)
+ standard_rollout_policy {
+ batch_node_count = (known after apply)
+ batch_percentage = (known after apply)
+ batch_soak_duration = (known after apply)
}
}
}
}
+ node_pool_auto_config {
+ resource_manager_tags = (known after apply)
+ network_tags {
+ tags = (known after apply)
}
}
+ node_pool_defaults {
+ node_config_defaults {
+ logging_variant = (known after apply)
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
}
}
+ notification_config {
+ pubsub {
+ enabled = (known after apply)
+ topic = (known after apply)
+ filter {
+ event_type = (known after apply)
}
}
}
+ release_channel {
+ channel = (known after apply)
}
+ security_posture_config {
+ mode = (known after apply)
+ vulnerability_mode = (known after apply)
}
+ service_external_ips_config {
+ enabled = (known after apply)
}
+ vertical_pod_autoscaling {
+ enabled = (known after apply)
}
+ workload_identity_config {
+ workload_pool = (known after apply)
}
}
# kubernetes_deployment_v1.default will be created
+ resource "kubernetes_deployment_v1" "default" {
+ id = (known after apply)
+ wait_for_rollout = true
+ metadata {
+ generation = (known after apply)
+ name = "example-hello-app-deployment"
+ namespace = "default"
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ min_ready_seconds = 0
+ paused = false
+ progress_deadline_seconds = 600
+ replicas = (known after apply)
+ revision_history_limit = 10
+ selector {
+ match_labels = {
+ "app" = "hello-app"
}
}
+ strategy {
+ type = (known after apply)
+ rolling_update {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
}
}
+ template {
+ metadata {
+ generation = (known after apply)
+ labels = {
+ "app" = "hello-app"
}
+ name = (known after apply)
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ automount_service_account_token = true
+ dns_policy = "ClusterFirst"
+ enable_service_links = true
+ host_ipc = false
+ host_network = false
+ host_pid = false
+ hostname = (known after apply)
+ node_name = (known after apply)
+ restart_policy = "Always"
+ scheduler_name = (known after apply)
+ service_account_name = (known after apply)
+ share_process_namespace = false
+ termination_grace_period_seconds = 30
+ container {
+ image = "us-docker.pkg.dev/google-samples/containers/gke/hello-app:2.0"
+ image_pull_policy = (known after apply)
+ name = "hello-app-container"
+ stdin = false
+ stdin_once = false
+ termination_message_path = "/dev/termination-log"
+ termination_message_policy = (known after apply)
+ tty = false
+ liveness_probe {
+ failure_threshold = 3
+ initial_delay_seconds = 3
+ period_seconds = 3
+ success_threshold = 1
+ timeout_seconds = 1
+ http_get {
+ path = "/"
+ port = "hello-app-svc"
+ scheme = "HTTP"
+ http_header {
+ name = "X-Custom-Header"
+ value = "Awesome"
}
}
}
+ port {
+ container_port = 8080
+ name = "hello-app-svc"
+ protocol = "TCP"
}
+ resources {
+ limits = (known after apply)
+ requests = (known after apply)
}
+ security_context {
+ allow_privilege_escalation = false
+ privileged = false
+ read_only_root_filesystem = false
+ capabilities {
+ add = []
+ drop = [
+ "NET_RAW",
]
}
}
}
+ image_pull_secrets {
+ name = (known after apply)
}
+ readiness_gate {
+ condition_type = (known after apply)
}
+ security_context {
+ run_as_non_root = true
+ seccomp_profile {
+ type = "RuntimeDefault"
}
}
+ toleration {
+ effect = "NoSchedule"
+ key = "kubernetes.io/arch"
+ operator = "Equal"
+ value = "amd64"
}
}
}
}
}
# kubernetes_service_v1.default will be created
+ resource "kubernetes_service_v1" "default" {
+ id = (known after apply)
+ status = (known after apply)
+ wait_for_load_balancer = true
+ metadata {
+ annotations = {
+ "networking.gke.io/load-balancer-type" = "Internal"
}
+ generation = (known after apply)
+ name = "example-hello-app-loadbalancer"
+ namespace = "default"
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ allocate_load_balancer_node_ports = true
+ cluster_ip = (known after apply)
+ cluster_ips = (known after apply)
+ external_traffic_policy = (known after apply)
+ health_check_node_port = (known after apply)
+ internal_traffic_policy = (known after apply)
+ ip_families = (known after apply)
+ ip_family_policy = "RequireDualStack"
+ publish_not_ready_addresses = false
+ selector = {
+ "app" = "hello-app"
}
+ session_affinity = "None"
+ type = "LoadBalancer"
+ port {
+ node_port = (known after apply)
+ port = 80
+ protocol = "TCP"
+ target_port = "hello-app-svc"
}
+ session_affinity_config {
+ client_ip {
+ timeout_seconds = (known after apply)
}
}
}
}
# time_sleep.wait_service_cleanup will be created
+ resource "time_sleep" "wait_service_cleanup" {
+ destroy_duration = "180s"
+ id = (known after apply)
}
Plan: 6 to add, 0 to change, 0 to destroy.
────────────────────────────────────────────────────────────────────────────────────────────
Note: You didn't use the -out option to save this plan, so Terraform can't guarantee to take
exactly these actions if you run "terraform apply" now.
plan結果を実際に構築
以下のコマンドでplanで確認した結果をリソース構築していきます。
再度plan内容が表示されるので確認します。
Enter a value:
と表示されたら、yes
と入力します。
% terraform apply
data.google_client_config.default: Reading...
data.google_client_config.default: Read complete after 0s [id=projects/"test-project-1-419603"/regions/<null>/zones/<null>]
Terraform used the selected providers to generate the following execution plan. Resource
actions are indicated with the following symbols:
+ create
Terraform will perform the following actions:
# google_compute_network.default will be created
+ resource "google_compute_network" "default" {
+ auto_create_subnetworks = false
+ delete_default_routes_on_create = false
+ enable_ula_internal_ipv6 = true
+ gateway_ipv4 = (known after apply)
+ id = (known after apply)
+ internal_ipv6_range = (known after apply)
+ mtu = (known after apply)
+ name = "example-network"
+ network_firewall_policy_enforcement_order = "AFTER_CLASSIC_FIREWALL"
+ numeric_id = (known after apply)
+ project = "test-project-1-419603"
+ routing_mode = (known after apply)
+ self_link = (known after apply)
}
# google_compute_subnetwork.default will be created
+ resource "google_compute_subnetwork" "default" {
+ creation_timestamp = (known after apply)
+ external_ipv6_prefix = (known after apply)
+ fingerprint = (known after apply)
+ gateway_address = (known after apply)
+ id = (known after apply)
+ internal_ipv6_prefix = (known after apply)
+ ip_cidr_range = "10.0.0.0/16"
+ ipv6_access_type = "INTERNAL"
+ ipv6_cidr_range = (known after apply)
+ name = "example-subnetwork"
+ network = (known after apply)
+ private_ip_google_access = (known after apply)
+ private_ipv6_google_access = (known after apply)
+ project = "test-project-1-419603"
+ purpose = (known after apply)
+ region = "us-central1"
+ secondary_ip_range = [
+ {
+ ip_cidr_range = "192.168.0.0/24"
+ range_name = "services-range"
},
+ {
+ ip_cidr_range = "192.168.1.0/24"
+ range_name = "pod-ranges"
},
]
+ self_link = (known after apply)
+ stack_type = "IPV4_IPV6"
}
# google_container_cluster.default will be created
+ resource "google_container_cluster" "default" {
+ cluster_ipv4_cidr = (known after apply)
+ datapath_provider = (known after apply)
+ default_max_pods_per_node = (known after apply)
+ deletion_protection = false
+ enable_autopilot = true
+ enable_cilium_clusterwide_network_policy = false
+ enable_intranode_visibility = true
+ enable_kubernetes_alpha = false
+ enable_l4_ilb_subsetting = true
+ enable_legacy_abac = false
+ enable_shielded_nodes = true
+ endpoint = (known after apply)
+ id = (known after apply)
+ label_fingerprint = (known after apply)
+ location = "us-central1"
+ logging_service = (known after apply)
+ master_version = (known after apply)
+ monitoring_service = (known after apply)
+ name = "example-autopilot-cluster"
+ network = (known after apply)
+ networking_mode = "VPC_NATIVE"
+ node_locations = (known after apply)
+ node_version = (known after apply)
+ operation = (known after apply)
+ private_ipv6_google_access = (known after apply)
+ project = (known after apply)
+ self_link = (known after apply)
+ services_ipv4_cidr = (known after apply)
+ subnetwork = (known after apply)
+ tpu_ipv4_cidr_block = (known after apply)
+ addons_config {
+ cloudrun_config {
+ disabled = (known after apply)
+ load_balancer_type = (known after apply)
}
+ config_connector_config {
+ enabled = (known after apply)
}
+ dns_cache_config {
+ enabled = (known after apply)
}
+ gce_persistent_disk_csi_driver_config {
+ enabled = (known after apply)
}
+ gcp_filestore_csi_driver_config {
+ enabled = (known after apply)
}
+ gcs_fuse_csi_driver_config {
+ enabled = (known after apply)
}
+ gke_backup_agent_config {
+ enabled = (known after apply)
}
+ horizontal_pod_autoscaling {
+ disabled = (known after apply)
}
+ http_load_balancing {
+ disabled = (known after apply)
}
+ network_policy_config {
+ disabled = (known after apply)
}
+ stateful_ha_config {
+ enabled = (known after apply)
}
}
+ authenticator_groups_config {
+ security_group = (known after apply)
}
+ cluster_autoscaling {
+ autoscaling_profile = (known after apply)
+ enabled = (known after apply)
+ auto_provisioning_defaults {
+ boot_disk_kms_key = (known after apply)
+ disk_size = (known after apply)
+ disk_type = (known after apply)
+ image_type = (known after apply)
+ min_cpu_platform = (known after apply)
+ oauth_scopes = (known after apply)
+ service_account = (known after apply)
+ management {
+ auto_repair = (known after apply)
+ auto_upgrade = (known after apply)
+ upgrade_options = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ upgrade_settings {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
+ strategy = (known after apply)
+ blue_green_settings {
+ node_pool_soak_duration = (known after apply)
+ standard_rollout_policy {
+ batch_node_count = (known after apply)
+ batch_percentage = (known after apply)
+ batch_soak_duration = (known after apply)
}
}
}
}
+ resource_limits {
+ maximum = (known after apply)
+ minimum = (known after apply)
+ resource_type = (known after apply)
}
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ cost_management_config {
+ enabled = (known after apply)
}
+ database_encryption {
+ key_name = (known after apply)
+ state = (known after apply)
}
+ default_snat_status {
+ disabled = (known after apply)
}
+ gateway_api_config {
+ channel = (known after apply)
}
+ identity_service_config {
+ enabled = (known after apply)
}
+ ip_allocation_policy {
+ cluster_ipv4_cidr_block = (known after apply)
+ cluster_secondary_range_name = "pod-ranges"
+ services_ipv4_cidr_block = (known after apply)
+ services_secondary_range_name = "services-range"
+ stack_type = "IPV4_IPV6"
+ pod_cidr_overprovision_config {
+ disabled = (known after apply)
}
}
+ logging_config {
+ enable_components = (known after apply)
}
+ master_auth {
+ client_certificate = (known after apply)
+ client_key = (sensitive value)
+ cluster_ca_certificate = (known after apply)
+ client_certificate_config {
+ issue_client_certificate = (known after apply)
}
}
+ master_authorized_networks_config {
+ gcp_public_cidrs_access_enabled = (known after apply)
+ cidr_blocks {
+ cidr_block = (known after apply)
+ display_name = (known after apply)
}
}
+ mesh_certificates {
+ enable_certificates = (known after apply)
}
+ monitoring_config {
+ enable_components = (known after apply)
+ advanced_datapath_observability_config {
+ enable_metrics = (known after apply)
+ enable_relay = (known after apply)
+ relay_mode = (known after apply)
}
+ managed_prometheus {
+ enabled = (known after apply)
}
}
+ node_config {
+ boot_disk_kms_key = (known after apply)
+ disk_size_gb = (known after apply)
+ disk_type = (known after apply)
+ effective_taints = (known after apply)
+ enable_confidential_storage = (known after apply)
+ guest_accelerator = (known after apply)
+ image_type = (known after apply)
+ labels = (known after apply)
+ local_ssd_count = (known after apply)
+ logging_variant = (known after apply)
+ machine_type = (known after apply)
+ metadata = (known after apply)
+ min_cpu_platform = (known after apply)
+ node_group = (known after apply)
+ oauth_scopes = (known after apply)
+ preemptible = (known after apply)
+ resource_labels = (known after apply)
+ resource_manager_tags = (known after apply)
+ service_account = (known after apply)
+ spot = (known after apply)
+ tags = (known after apply)
+ advanced_machine_features {
+ enable_nested_virtualization = (known after apply)
+ threads_per_core = (known after apply)
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
+ ephemeral_storage_local_ssd_config {
+ local_ssd_count = (known after apply)
}
+ fast_socket {
+ enabled = (known after apply)
}
+ gcfs_config {
+ enabled = (known after apply)
}
+ gvnic {
+ enabled = (known after apply)
}
+ host_maintenance_policy {
+ maintenance_interval = (known after apply)
}
+ kubelet_config {
+ cpu_cfs_quota = (known after apply)
+ cpu_cfs_quota_period = (known after apply)
+ cpu_manager_policy = (known after apply)
+ pod_pids_limit = (known after apply)
}
+ linux_node_config {
+ cgroup_mode = (known after apply)
+ sysctls = (known after apply)
}
+ local_nvme_ssd_block_config {
+ local_ssd_count = (known after apply)
}
+ reservation_affinity {
+ consume_reservation_type = (known after apply)
+ key = (known after apply)
+ values = (known after apply)
}
+ secondary_boot_disks {
+ disk_image = (known after apply)
+ mode = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ sole_tenant_config {
+ node_affinity {
+ key = (known after apply)
+ operator = (known after apply)
+ values = (known after apply)
}
}
+ taint {
+ effect = (known after apply)
+ key = (known after apply)
+ value = (known after apply)
}
+ workload_metadata_config {
+ mode = (known after apply)
}
}
+ node_pool {
+ initial_node_count = (known after apply)
+ instance_group_urls = (known after apply)
+ managed_instance_group_urls = (known after apply)
+ max_pods_per_node = (known after apply)
+ name = (known after apply)
+ name_prefix = (known after apply)
+ node_count = (known after apply)
+ node_locations = (known after apply)
+ version = (known after apply)
+ autoscaling {
+ location_policy = (known after apply)
+ max_node_count = (known after apply)
+ min_node_count = (known after apply)
+ total_max_node_count = (known after apply)
+ total_min_node_count = (known after apply)
}
+ management {
+ auto_repair = (known after apply)
+ auto_upgrade = (known after apply)
}
+ network_config {
+ create_pod_range = (known after apply)
+ enable_private_nodes = (known after apply)
+ pod_ipv4_cidr_block = (known after apply)
+ pod_range = (known after apply)
+ network_performance_config {
+ total_egress_bandwidth_tier = (known after apply)
}
+ pod_cidr_overprovision_config {
+ disabled = (known after apply)
}
}
+ node_config {
+ boot_disk_kms_key = (known after apply)
+ disk_size_gb = (known after apply)
+ disk_type = (known after apply)
+ effective_taints = (known after apply)
+ enable_confidential_storage = (known after apply)
+ guest_accelerator = (known after apply)
+ image_type = (known after apply)
+ labels = (known after apply)
+ local_ssd_count = (known after apply)
+ logging_variant = (known after apply)
+ machine_type = (known after apply)
+ metadata = (known after apply)
+ min_cpu_platform = (known after apply)
+ node_group = (known after apply)
+ oauth_scopes = (known after apply)
+ preemptible = (known after apply)
+ resource_labels = (known after apply)
+ resource_manager_tags = (known after apply)
+ service_account = (known after apply)
+ spot = (known after apply)
+ tags = (known after apply)
+ advanced_machine_features {
+ enable_nested_virtualization = (known after apply)
+ threads_per_core = (known after apply)
}
+ confidential_nodes {
+ enabled = (known after apply)
}
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
+ ephemeral_storage_local_ssd_config {
+ local_ssd_count = (known after apply)
}
+ fast_socket {
+ enabled = (known after apply)
}
+ gcfs_config {
+ enabled = (known after apply)
}
+ gvnic {
+ enabled = (known after apply)
}
+ host_maintenance_policy {
+ maintenance_interval = (known after apply)
}
+ kubelet_config {
+ cpu_cfs_quota = (known after apply)
+ cpu_cfs_quota_period = (known after apply)
+ cpu_manager_policy = (known after apply)
+ pod_pids_limit = (known after apply)
}
+ linux_node_config {
+ cgroup_mode = (known after apply)
+ sysctls = (known after apply)
}
+ local_nvme_ssd_block_config {
+ local_ssd_count = (known after apply)
}
+ reservation_affinity {
+ consume_reservation_type = (known after apply)
+ key = (known after apply)
+ values = (known after apply)
}
+ secondary_boot_disks {
+ disk_image = (known after apply)
+ mode = (known after apply)
}
+ shielded_instance_config {
+ enable_integrity_monitoring = (known after apply)
+ enable_secure_boot = (known after apply)
}
+ sole_tenant_config {
+ node_affinity {
+ key = (known after apply)
+ operator = (known after apply)
+ values = (known after apply)
}
}
+ taint {
+ effect = (known after apply)
+ key = (known after apply)
+ value = (known after apply)
}
+ workload_metadata_config {
+ mode = (known after apply)
}
}
+ placement_policy {
+ policy_name = (known after apply)
+ tpu_topology = (known after apply)
+ type = (known after apply)
}
+ queued_provisioning {
+ enabled = (known after apply)
}
+ upgrade_settings {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
+ strategy = (known after apply)
+ blue_green_settings {
+ node_pool_soak_duration = (known after apply)
+ standard_rollout_policy {
+ batch_node_count = (known after apply)
+ batch_percentage = (known after apply)
+ batch_soak_duration = (known after apply)
}
}
}
}
+ node_pool_auto_config {
+ resource_manager_tags = (known after apply)
+ network_tags {
+ tags = (known after apply)
}
}
+ node_pool_defaults {
+ node_config_defaults {
+ logging_variant = (known after apply)
+ containerd_config {
+ private_registry_access_config {
+ enabled = (known after apply)
+ certificate_authority_domain_config {
+ fqdns = (known after apply)
+ gcp_secret_manager_certificate_config {
+ secret_uri = (known after apply)
}
}
}
}
}
}
+ notification_config {
+ pubsub {
+ enabled = (known after apply)
+ topic = (known after apply)
+ filter {
+ event_type = (known after apply)
}
}
}
+ release_channel {
+ channel = (known after apply)
}
+ security_posture_config {
+ mode = (known after apply)
+ vulnerability_mode = (known after apply)
}
+ service_external_ips_config {
+ enabled = (known after apply)
}
+ vertical_pod_autoscaling {
+ enabled = (known after apply)
}
+ workload_identity_config {
+ workload_pool = (known after apply)
}
}
# kubernetes_deployment_v1.default will be created
+ resource "kubernetes_deployment_v1" "default" {
+ id = (known after apply)
+ wait_for_rollout = true
+ metadata {
+ generation = (known after apply)
+ name = "example-hello-app-deployment"
+ namespace = "default"
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ min_ready_seconds = 0
+ paused = false
+ progress_deadline_seconds = 600
+ replicas = (known after apply)
+ revision_history_limit = 10
+ selector {
+ match_labels = {
+ "app" = "hello-app"
}
}
+ strategy {
+ type = (known after apply)
+ rolling_update {
+ max_surge = (known after apply)
+ max_unavailable = (known after apply)
}
}
+ template {
+ metadata {
+ generation = (known after apply)
+ labels = {
+ "app" = "hello-app"
}
+ name = (known after apply)
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ automount_service_account_token = true
+ dns_policy = "ClusterFirst"
+ enable_service_links = true
+ host_ipc = false
+ host_network = false
+ host_pid = false
+ hostname = (known after apply)
+ node_name = (known after apply)
+ restart_policy = "Always"
+ scheduler_name = (known after apply)
+ service_account_name = (known after apply)
+ share_process_namespace = false
+ termination_grace_period_seconds = 30
+ container {
+ image = "us-docker.pkg.dev/google-samples/containers/gke/hello-app:2.0"
+ image_pull_policy = (known after apply)
+ name = "hello-app-container"
+ stdin = false
+ stdin_once = false
+ termination_message_path = "/dev/termination-log"
+ termination_message_policy = (known after apply)
+ tty = false
+ liveness_probe {
+ failure_threshold = 3
+ initial_delay_seconds = 3
+ period_seconds = 3
+ success_threshold = 1
+ timeout_seconds = 1
+ http_get {
+ path = "/"
+ port = "hello-app-svc"
+ scheme = "HTTP"
+ http_header {
+ name = "X-Custom-Header"
+ value = "Awesome"
}
}
}
+ port {
+ container_port = 8080
+ name = "hello-app-svc"
+ protocol = "TCP"
}
+ resources {
+ limits = (known after apply)
+ requests = (known after apply)
}
+ security_context {
+ allow_privilege_escalation = false
+ privileged = false
+ read_only_root_filesystem = false
+ capabilities {
+ add = []
+ drop = [
+ "NET_RAW",
]
}
}
}
+ image_pull_secrets {
+ name = (known after apply)
}
+ readiness_gate {
+ condition_type = (known after apply)
}
+ security_context {
+ run_as_non_root = true
+ seccomp_profile {
+ type = "RuntimeDefault"
}
}
+ toleration {
+ effect = "NoSchedule"
+ key = "kubernetes.io/arch"
+ operator = "Equal"
+ value = "amd64"
}
}
}
}
}
# kubernetes_service_v1.default will be created
+ resource "kubernetes_service_v1" "default" {
+ id = (known after apply)
+ status = (known after apply)
+ wait_for_load_balancer = true
+ metadata {
+ annotations = {
+ "networking.gke.io/load-balancer-type" = "Internal"
}
+ generation = (known after apply)
+ name = "example-hello-app-loadbalancer"
+ namespace = "default"
+ resource_version = (known after apply)
+ uid = (known after apply)
}
+ spec {
+ allocate_load_balancer_node_ports = true
+ cluster_ip = (known after apply)
+ cluster_ips = (known after apply)
+ external_traffic_policy = (known after apply)
+ health_check_node_port = (known after apply)
+ internal_traffic_policy = (known after apply)
+ ip_families = (known after apply)
+ ip_family_policy = "RequireDualStack"
+ publish_not_ready_addresses = false
+ selector = {
+ "app" = "hello-app"
}
+ session_affinity = "None"
+ type = "LoadBalancer"
+ port {
+ node_port = (known after apply)
+ port = 80
+ protocol = "TCP"
+ target_port = "hello-app-svc"
}
+ session_affinity_config {
+ client_ip {
+ timeout_seconds = (known after apply)
}
}
}
}
# time_sleep.wait_service_cleanup will be created
+ resource "time_sleep" "wait_service_cleanup" {
+ destroy_duration = "180s"
+ id = (known after apply)
}
Plan: 6 to add, 0 to change, 0 to destroy.
Do you want to perform these actions?
Terraform will perform the actions described above.
Only 'yes' will be accepted to approve.
Enter a value: yes
google_compute_network.default: Creating...
google_compute_network.default: Still creating... [10s elapsed]
google_compute_network.default: Creation complete after 12s [id=projects/test-project-1-419603/global/networks/example-network]
google_compute_subnetwork.default: Creating...
google_compute_subnetwork.default: Still creating... [10s elapsed]
google_compute_subnetwork.default: Still creating... [20s elapsed]
google_compute_subnetwork.default: Still creating... [30s elapsed]
google_compute_subnetwork.default: Creation complete after 36s [id=projects/test-project-1-419603/regions/us-central1/subnetworks/example-subnetwork]
google_container_cluster.default: Creating...
google_container_cluster.default: Still creating... [10s elapsed]
google_container_cluster.default: Still creating... [20s elapsed]
google_container_cluster.default: Still creating... [30s elapsed]
google_container_cluster.default: Still creating... [40s elapsed]
google_container_cluster.default: Still creating... [50s elapsed]
google_container_cluster.default: Still creating... [1m0s elapsed]
google_container_cluster.default: Still creating... [1m10s elapsed]
google_container_cluster.default: Still creating... [1m20s elapsed]
google_container_cluster.default: Still creating... [1m30s elapsed]
google_container_cluster.default: Still creating... [1m40s elapsed]
google_container_cluster.default: Still creating... [1m50s elapsed]
google_container_cluster.default: Still creating... [2m0s elapsed]
google_container_cluster.default: Still creating... [2m10s elapsed]
google_container_cluster.default: Still creating... [2m20s elapsed]
google_container_cluster.default: Still creating... [2m30s elapsed]
google_container_cluster.default: Still creating... [2m40s elapsed]
google_container_cluster.default: Still creating... [2m50s elapsed]
google_container_cluster.default: Still creating... [3m0s elapsed]
google_container_cluster.default: Still creating... [3m10s elapsed]
google_container_cluster.default: Still creating... [3m20s elapsed]
google_container_cluster.default: Still creating... [3m30s elapsed]
google_container_cluster.default: Still creating... [3m40s elapsed]
google_container_cluster.default: Still creating... [3m50s elapsed]
google_container_cluster.default: Still creating... [4m0s elapsed]
google_container_cluster.default: Still creating... [4m10s elapsed]
google_container_cluster.default: Still creating... [4m20s elapsed]
google_container_cluster.default: Still creating... [4m30s elapsed]
google_container_cluster.default: Still creating... [4m40s elapsed]
google_container_cluster.default: Still creating... [4m50s elapsed]
google_container_cluster.default: Still creating... [5m0s elapsed]
google_container_cluster.default: Still creating... [5m10s elapsed]
google_container_cluster.default: Still creating... [5m20s elapsed]
google_container_cluster.default: Still creating... [5m30s elapsed]
google_container_cluster.default: Still creating... [5m40s elapsed]
google_container_cluster.default: Still creating... [5m50s elapsed]
google_container_cluster.default: Still creating... [6m0s elapsed]
google_container_cluster.default: Still creating... [6m10s elapsed]
google_container_cluster.default: Still creating... [6m20s elapsed]
google_container_cluster.default: Still creating... [6m30s elapsed]
google_container_cluster.default: Still creating... [6m40s elapsed]
google_container_cluster.default: Still creating... [6m50s elapsed]
google_container_cluster.default: Still creating... [7m0s elapsed]
google_container_cluster.default: Still creating... [7m10s elapsed]
google_container_cluster.default: Still creating... [7m20s elapsed]
google_container_cluster.default: Still creating... [7m30s elapsed]
google_container_cluster.default: Still creating... [7m40s elapsed]
google_container_cluster.default: Still creating... [7m50s elapsed]
google_container_cluster.default: Still creating... [8m0s elapsed]
google_container_cluster.default: Still creating... [8m10s elapsed]
google_container_cluster.default: Still creating... [8m20s elapsed]
google_container_cluster.default: Still creating... [8m30s elapsed]
google_container_cluster.default: Still creating... [8m40s elapsed]
google_container_cluster.default: Still creating... [8m50s elapsed]
google_container_cluster.default: Still creating... [9m0s elapsed]
google_container_cluster.default: Still creating... [9m10s elapsed]
google_container_cluster.default: Still creating... [9m20s elapsed]
google_container_cluster.default: Still creating... [9m30s elapsed]
google_container_cluster.default: Still creating... [9m40s elapsed]
google_container_cluster.default: Still creating... [9m50s elapsed]
google_container_cluster.default: Still creating... [10m0s elapsed]
google_container_cluster.default: Still creating... [10m10s elapsed]
google_container_cluster.default: Still creating... [10m20s elapsed]
google_container_cluster.default: Still creating... [10m30s elapsed]
google_container_cluster.default: Still creating... [10m40s elapsed]
google_container_cluster.default: Still creating... [10m50s elapsed]
google_container_cluster.default: Creation complete after 10m58s [id=projects/test-project-1-419603/locations/us-central1/clusters/example-autopilot-cluster]
time_sleep.wait_service_cleanup: Creating...
time_sleep.wait_service_cleanup: Creation complete after 0s [id=2024-06-15T08:58:27Z]
kubernetes_deployment_v1.default: Creating...
kubernetes_deployment_v1.default: Still creating... [10s elapsed]
kubernetes_deployment_v1.default: Still creating... [20s elapsed]
kubernetes_deployment_v1.default: Still creating... [30s elapsed]
kubernetes_deployment_v1.default: Still creating... [40s elapsed]
kubernetes_deployment_v1.default: Still creating... [50s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m0s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m10s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m20s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m30s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m40s elapsed]
kubernetes_deployment_v1.default: Still creating... [1m50s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m0s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m10s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m20s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m30s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m40s elapsed]
kubernetes_deployment_v1.default: Still creating... [2m50s elapsed]
kubernetes_deployment_v1.default: Still creating... [3m0s elapsed]
kubernetes_deployment_v1.default: Still creating... [3m10s elapsed]
kubernetes_deployment_v1.default: Creation complete after 3m12s [id=default/example-hello-app-deployment]
kubernetes_service_v1.default: Creating...
kubernetes_service_v1.default: Still creating... [10s elapsed]
kubernetes_service_v1.default: Still creating... [20s elapsed]
kubernetes_service_v1.default: Still creating... [30s elapsed]
kubernetes_service_v1.default: Still creating... [40s elapsed]
kubernetes_service_v1.default: Still creating... [50s elapsed]
kubernetes_service_v1.default: Still creating... [1m0s elapsed]
kubernetes_service_v1.default: Still creating... [1m10s elapsed]
kubernetes_service_v1.default: Still creating... [1m20s elapsed]
kubernetes_service_v1.default: Creation complete after 1m29s [id=default/example-hello-app-loadbalancer]
Apply complete! Resources: 6 added, 0 changed, 0 destroyed.
動作確認
以下のGKEコンソールのワークロードを確認します。

example-hello-app-deploymentを選択してPodのリソース情報を確認できます。
以下のサービスページでは、サービスやロードバランサーの詳細が確認できます。

外部エンドポイント>リンクを選択します。
問題なければ以下のように表示されるようです。
Hello, world!
Version: 2.0.0
Hostname: example-hello-app-deployment-5df979c4fb-kdwgr
※私の環境ではなぜかリクエストタイムアウトになってしまいました
リソースの削除
以下のコマンドで作成したリソースを削除します。
terraform destroy --auto-approve
まとめ
今回は、Terraformを用いてGKE環境を構築してみました。
他にもアプリケーションを実行してみて検証してみたいと思います!
最後までご覧いただきありがとうございました。
コメント