import of examples

Author: danisla

Diff for: examples/.gitignore

@@ -0,0 +1,2 @@
+**/.terraform
+**/terraform.tfstate*

Diff for: examples/simple/README.md

@@ -0,0 +1,31 @@
+# Internal Load Balancer Example
+
+This example creates 3 instance groups. The first group is in us-central1-b and uses the internal load balancer to proxy access to services running in instance groups 2 and 3 which exist in us-central1-c and us-central1-f respectively. A regional TCP load balancer is also used to forward external traffic to the instances in group 1.
+
+**Figure 1.** *diagram of Google Cloud resources*
+
+![architecture diagram](./diagram.png)
+
+## Set up the environment
+
+```
+gcloud auth application-default login
+export GOOGLE_PROJECT=$(gcloud config get-value project)
+```
+
+## Run Terraform
+
+```
+terraform init
+terraform plan
+terraform apply
+```
+
+Open URL of load balancer in browser:
+
+```
+EXTERNAL_IP=$(terraform output -module gce-lb-fr | grep external_ip | cut -d = -f2 | xargs echo -n)
+open http://${EXTERNAL_IP}
+```
+
+You should see the instance details from `group2` proxied through `group1` and the internal load balancer.

Diff for: examples/simple/diagram.png

@@ -0,0 +1,109 @@
+#!/bin/bash -xe
+
+apt-get update
+apt-get install -y apache2 php5
+
+cat > /var/www/html/index.php <<'EOF'
+<?php
+function metadata_value($value) {
+    $opts = [
+        "http" => [
+            "method" => "GET",
+            "header" => "Metadata-Flavor: Google"
+        ]
+    ];
+    $context = stream_context_create($opts);
+    $content = file_get_contents("http://metadata/computeMetadata/v1/$value", false, $context);
+    return $content;
+}
+?>
+
+<!doctype html>
+<html>
+<head>
+<!-- Compiled and minified CSS -->
+<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/materialize/0.97.0/css/materialize.min.css">
+
+<!-- Compiled and minified JavaScript -->
+<script src="https://cdnjs.cloudflare.com/ajax/libs/materialize/0.97.0/js/materialize.min.js"></script>
+<title>Frontend Web Server</title>
+</head>
+<body>
+<div class="container">
+<div class="row">
+<div class="col s2">&nbsp;</div>
+<div class="col s8">
+
+
+<div class="card blue">
+<div class="card-content white-text">
+<div class="card-title">Backend that serviced this request</div>
+</div>
+<div class="card-content white">
+<table class="bordered">
+  <tbody>
+	<tr>
+	  <td>Name</td>
+	  <td><?php printf(metadata_value("instance/name")) ?></td>
+	</tr>
+	<tr>
+	  <td>ID</td>
+	  <td><?php printf(metadata_value("instance/id")) ?></td>
+	</tr>
+	<tr>
+	  <td>Hostname</td>
+	  <td><?php printf(metadata_value("instance/hostname")) ?></td>
+	</tr>
+	<tr>
+	  <td>Zone</td>
+	  <td><?php printf(metadata_value("instance/zone")) ?></td>
+	</tr>
+    <tr>
+	  <td>Machine Type</td>
+	  <td><?php printf(metadata_value("instance/machine-type")) ?></td>
+	</tr>
+	<tr>
+	  <td>Project</td>
+	  <td><?php printf(metadata_value("project/project-id")) ?></td>
+	</tr>
+	<tr>
+	  <td>Internal IP</td>
+	  <td><?php printf(metadata_value("instance/network-interfaces/0/ip")) ?></td>
+	</tr>
+	<tr>
+	  <td>External IP</td>
+	  <td><?php printf(metadata_value("instance/network-interfaces/0/access-configs/0/external-ip")) ?></td>
+	</tr>
+  </tbody>
+</table>
+</div>
+</div>
+
+<div class="card blue">
+<div class="card-content white-text">
+<div class="card-title">Proxy that handled this request</div>
+</div>
+<div class="card-content white">
+<table class="bordered">
+  <tbody>
+	<tr>
+	  <td>Address</td>
+	  <td><?php printf($_SERVER["HTTP_HOST"]); ?></td>
+	</tr>
+  </tbody>
+</table>
+</div>
+
+</div>
+</div>
+<div class="col s2">&nbsp;</div>
+</div>
+</div>
+</html>
+EOF
+sudo mv /var/www/html/index.html /var/www/html/index.html.old
+
+[[ -n "${PROXY_PATH}" ]] && mkdir -p /var/www/html/${PROXY_PATH} && cp /var/www/html/index.php /var/www/html/${PROXY_PATH}/index.php
+
+systemctl enable apache2
+systemctl restart apache2

Diff for: examples/simple/gceme.sh.tpl

@@ -0,0 +1,59 @@
+/*
+ * Copyright 2017 Google Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+variable region {
+  default = "us-central1"
+}
+
+variable network {
+  default = "default"
+}
+
+variable zone {
+  default = "us-central1-b"
+}
+
+provider google {
+  region = "${var.region}"
+}
+
+module "gce-lb-fr" {
+  source       = "github.com/GoogleCloudPlatform/terraform-google-lb"
+  region       = "${var.region}"
+  network      = "${var.network}"
+  name         = "group1-lb"
+  service_port = "${module.mig1.service_port}"
+  target_tags  = ["${module.mig1.target_tags}"]
+}
+
+module "gce-ilb" {
+  source      = "../../"
+  region      = "${var.region}"
+  name        = "group-ilb"
+  ports       = ["${module.mig2.service_port}"]
+  health_port = "${module.mig2.service_port}"
+  source_tags = ["${module.mig1.target_tags}"]
+  target_tags = ["${module.mig2.target_tags}", "${module.mig3.target_tags}"]
+
+  backends = [
+    {
+      group = "${module.mig2.instance_group}"
+    },
+    {
+      group = "${module.mig3.instance_group}"
+    },
+  ]
+}

Diff for: examples/simple/main.tf

@@ -0,0 +1,76 @@
+/*
+ * Copyright 2017 Google Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+data "template_file" "group1-startup-script" {
+  template = "${file("${format("%s/nginx_upstream.sh.tpl", path.module)}")}"
+
+  vars {
+    UPSTREAM = "${module.gce-ilb.ip_address}"
+  }
+}
+
+data "template_file" "group2-startup-script" {
+  template = "${file("${format("%s/gceme.sh.tpl", path.module)}")}"
+
+  vars {
+    PROXY_PATH = ""
+  }
+}
+
+data "template_file" "group3-startup-script" {
+  template = "${file("${format("%s/gceme.sh.tpl", path.module)}")}"
+
+  vars {
+    PROXY_PATH = ""
+  }
+}
+
+module "mig1" {
+  source            = "github.com/GoogleCloudPlatform/terraform-google-managed-instance-group"
+  region            = "${var.region}"
+  zone              = "${var.zone}"
+  name              = "group1"
+  size              = 2
+  target_tags       = ["allow-group1"]
+  target_pools      = ["${module.gce-lb-fr.target_pool}"]
+  service_port      = 80
+  service_port_name = "http"
+  startup_script    = "${data.template_file.group1-startup-script.rendered}"
+}
+
+module "mig2" {
+  source            = "github.com/GoogleCloudPlatform/terraform-google-managed-instance-group"
+  region            = "${var.region}"
+  zone              = "us-central1-c"
+  name              = "group2"
+  size              = 2
+  target_tags       = ["allow-group2"]
+  service_port      = 80
+  service_port_name = "http"
+  startup_script    = "${data.template_file.group2-startup-script.rendered}"
+}
+
+module "mig3" {
+  source            = "github.com/GoogleCloudPlatform/terraform-google-managed-instance-group"
+  region            = "${var.region}"
+  zone              = "us-central1-f"
+  name              = "group3"
+  size              = 2
+  target_tags       = ["allow-group3"]
+  service_port      = 80
+  service_port_name = "http"
+  startup_script    = "${data.template_file.group3-startup-script.rendered}"
+}

Diff for: examples/simple/mig.tf

@@ -0,0 +1,19 @@
+#!/bin/bash -xe
+
+apt-get update
+apt-get install -y nginx
+
+cat - > /etc/nginx/sites-available/upstream <<EOF
+server {
+    listen 80;
+    location / {
+        proxy_pass http://${UPSTREAM};
+    }
+}
+EOF
+
+unlink /etc/nginx/sites-enabled/default
+ln -sf /etc/nginx/sites-available/upstream /etc/nginx/sites-enabled/upstream
+
+systemctl enable nginx
+systemctl reload nginx