First cut of Azure VM Demo.

hallty-uob · hallty-uob · commit bd381579d697 · 2023-07-18T12:27:04.000+01:00
diff --git a/azure/main.tf b/azure/main.tf
@@ -0,0 +1,45 @@
+# This azure main.tf file configures 
+#  - The baseline terraform registery for Azure
+#  - The backend terraform uses to store STATE
+#  - Authenication with Azure via Service Principle 
+#  - Basic Azure structures such as resource groups
+
+
+# Configure terraform resource providers and remote backend state management
+
+terraform {
+  required_providers {
+    azurerm = {
+      source = "hashicorp/azurerm"
+      version = "3.65.0"
+    }
+  }
+}
+
+# Configure the Azure provider to use specific subscription + other parameters
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest
+
+provider "azurerm" {
+  features {
+
+    resource_group {
+      prevent_deletion_if_contains_resources = false
+    }
+
+  }
+
+  skip_provider_registration = true
+
+  tenant_id       = var.TENANT_ID
+  subscription_id = var.SUBSCRIPTION_ID
+  client_id       = var.CLIENT_ID
+  client_secret   = var.CLIENT_SECRET
+}
+
+# Create azure resource group
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/resource_group
+
+resource "azurerm_resource_group" "rg" {
+  name     = "rg-tim-demo-uksouth"
+  location = "UK South"
+}
diff --git a/azure/terraform.tfvars.example b/azure/terraform.tfvars.example
@@ -0,0 +1,10 @@
+# tfvars files are used by terraform to pass secret values to terraform at runtime 
+
+# this file is typically dynamaically created at runtime in a CI/CD pipeline using a key vault 
+
+# Baseline variables needed to use this terraform 
+
+TENANT_ID = "????????-????-????-????-????????????" 
+SUBSCRIPTION_ID = "????????-????-????-????-?????????????"
+CLIENT_ID     = "?????????????"
+CLIENT_SECRET = "?????????????"
diff --git a/azure/variables.tf b/azure/variables.tf
@@ -0,0 +1,19 @@
+# This file defines baseline variables used across this TF deployment
+
+# These will typically be provided at Runtime in a CI/CD pipeline from a key vault
+
+variable "TENANT_ID" {
+     type = string
+}
+
+variable "SUBSCRIPTION_ID" {
+     type = string
+}
+
+variable "CLIENT_ID" {
+     type = string
+}
+
+variable "CLIENT_SECRET" {
+     type = string
+}
diff --git a/azure/vm.tf b/azure/vm.tf
@@ -0,0 +1,69 @@
+# References:
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/subnet
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/public_ip
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/network_interface
+# https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/linux_virtual_machine
+
+resource "azurerm_virtual_network" "vn" {
+  name                = "tim-demo-network"
+  address_space       = ["10.0.0.0/16"]
+  location            = azurerm_resource_group.rg.location
+  resource_group_name =  azurerm_resource_group.rg.name
+}
+
+resource "azurerm_subnet" "sn" {
+  name                 = "internal"
+  resource_group_name  = azurerm_resource_group.rg.name
+  virtual_network_name = azurerm_virtual_network.vn.name
+  address_prefixes     = ["10.0.2.0/24"]
+}
+
+resource "azurerm_public_ip" "pip" {
+  name                = "tim-demo-pip"
+  resource_group_name = azurerm_resource_group.rg.name
+  location            = azurerm_resource_group.rg.location
+  allocation_method   = "Dynamic"
+}
+
+resource "azurerm_network_interface" "ni" {
+  name                = "tim-demo-nic"
+  location            = azurerm_resource_group.rg.location
+  resource_group_name = azurerm_resource_group.rg.name
+
+  ip_configuration {
+    name                          = "internal"
+    subnet_id                     = azurerm_subnet.sn.id
+    private_ip_address_allocation = "Dynamic"
+    
+    public_ip_address_id = azurerm_public_ip.pip.id
+  }
+}
+
+resource "azurerm_linux_virtual_machine" "vm" {
+  name                = "tim-demo-vm"
+  resource_group_name = azurerm_resource_group.rg.name
+  location            = azurerm_resource_group.rg.location
+  size                = "Standard_F2"
+  admin_username      = "adminuser"
+  network_interface_ids = [
+    azurerm_network_interface.ni.id,
+  ]
+
+  admin_ssh_key {
+    username   = "adminuser"
+    public_key = file("C:/Users/tim_hall/Dropbox/cloud/Azure/id_rsa.pub")
+  }
+
+  os_disk {
+    caching              = "ReadWrite"
+    storage_account_type = "Standard_LRS"
+  }
+
+  source_image_reference {
+    publisher = "Canonical"
+    offer     = "0001-com-ubuntu-server-focal"
+    sku       = "20_04-lts"
+    version   = "latest"
+  }
+}
