This module is used to install and manage metrics and logging agents in GCE.
Basic usage of this module is as follows:
Sample module to install Ops Agent on all CentOS 8 VMs with two labels "env=prod" and "app=myproduct".
module "agent_policy" {
source = "terraform-google-modules/cloud-operations/google//modules/agent-policy"
version = "~> 0.2.3"
project_id = "<PROJECT ID>"
policy_id = "ops-agents-example-policy"
agent_rules = [
{
type = "ops-agent"
version = "current-major"
package_state = "installed"
enable_autoupgrade = true
},
]
group_labels = [
{
env = "prod"
app = "myproduct"
}
]
os_types = [
{
short_name = "centos"
version = "8"
},
]
}Sample module to install Logging Agent and Metrics Agent on all CentOS 8 VMs with two labels "env=prod" and "app=myproduct".
module "agent_policy" {
source = "terraform-google-modules/cloud-operations/google//modules/agent-policy"
version = "~> 0.2.3"
project_id = "<PROJECT ID>"
policy_id = "ops-agents-example-policy"
agent_rules = [
{
type = "logging"
version = "current-major"
package_state = "installed"
enable_autoupgrade = true
},
{
type = "metrics"
version = "current-major"
package_state = "installed"
enable_autoupgrade = true
},
]
group_labels = [
{
env = "prod"
app = "myproduct"
}
]
os_types = [
{
short_name = "centos"
version = "8"
},
]
}Functional examples are included in the examples directory.
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| agent_rules | A list of agent rules to be enforced by the policy. | list(any) |
n/a | yes |
| description | The description of the policy. | string |
null |
no |
| group_labels | A list of label maps to filter instances to apply policies on. | list(map(string)) |
null |
no |
| instances | A list of instances to filter instances to apply the policy. | list(string) |
null |
no |
| os_types | A list of OS types to filter instances to apply the policy. | list(any) |
n/a | yes |
| policy_id | The ID of the policy. | string |
n/a | yes |
| project_id | The ID of the project in which to provision resources. | string |
n/a | yes |
| zones | A list of zones to filter instances to apply the policy. | list(string) |
null |
no |
No outputs.
Note that additional validations may be enforced by the API.
Each agent rule in the list of agent rules contains the following fields:
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| type | Type of agent to manage. Allowed values: "logging", "metrics", "ops-agent". |
string | n/a | yes |
| version | Version of the agent to install. Allowed values and formats: "current-major", "latest", "MAJOR_VERSION.*.*", "MAJOR_VERSION.MINOR_VERSION.PATCH_VERSION", "5.5.2-BUILD_NUMBER". "5.5.2-BUILD_NUMBER" is only allowed if type="metrics". |
string | "current-major" |
no |
| package_state | Desired package state of the agent. Allowed values: "installed", "removed". |
object | "installed" |
no |
| enable_autoupgrade | Whether to enable autoupgrade of the agent. Allowed values: true, false. |
list(string) | true |
no |
Group labels are represented as a list of label maps to filter instances that the policy applies to. Each entry in a label map is related by AND and each label map is related by OR. More details can be found in the ops-agents policy docs.
Each item in the list must be in the format of zones/ZONE_NAME/instances/INSTANCE_NAME. To list all existing instances, run gcloud compute instances list. If this variable isn't provided, the variable will be set to its default value: null.
For now, exactly one OS type needs to be specified. Each OS type contains the following fields:
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| short_name | Short name of the OS. Allowed values: "centos", "debian", "rhel", "sles", "sles_sap", "ubuntu". |
string | n/a | yes |
| version | Version of the OS. | string | n/a | yes |
To inspect the exact OS short name and version of an instance, run gcloud beta compute instances os-inventory describe INSTANCE_NAME.
This ID must start with ops-agents-, contain only lowercase letters, numbers, and hyphens, end with a number or a letter, be between 1-63 characters, and be unique within the project.
These sections describe requirements for using this module.
The following dependencies must be available:
- Terraform v0.12
- Terraform Provider for GCP plugin v2.0
- Google Cloud SDK
- curl
A service account with the following roles must be used to provision the resources of this module:
- Logging Logs Writer:
roles/logging.logWriter - Monitoring Metric Writer:
roles/monitoring.metricWriter - OS Config GuestPolicy Admin:
roles/osconfig.guestPolicyAdmin
The Project Factory module and the IAM module may be used in combination to provision a service account with the necessary roles applied.
A project with the following APIs enabled must be used to host the resources of this module:
- Google Cloud Logging API:
logging.googleapis.com - Google Cloud Monitoring API:
monitoring.googleapis.com - Google Cloud OS Config API:
osconfig.googleapis.com
The Project Factory module can be used to provision a project with the necessary APIs enabled.
Instructions for how to run integration tests can be found in CONTRIBUTING.md. To run integration tests that test update functionality, set up your environment according to these instructions. Next, in the root directory of the repo, run:
make docker_test_integration_update
To run unit tests, set up your environment according to these instructions. Next, in the root directory of the repo, run:
make docker_test_bats
Refer to the contribution guidelines for information on contributing to this module.