fix post-install kustomization, keep file...

this risks exposing secrets from the deployed manifests, but those are currently deployed beforehand so we should be good as long as kustomization.yaml does not contain any.
2022-02-12 00:52:13 +01:00 · 2022-02-12 00:52:13 +01:00 · 8ba33a12c8
commit 8ba33a12c8
parent ca64e97563
1 changed files with 9 additions and 1 deletions
--- a/master.tf
+++ b/master.tf
@ -146,8 +146,16 @@ resource "hcloud_server" "first_control_plane" {
  # Deploy our post-installation kustomization
  provisioner "remote-exec" {
    inline = [
+      # This ugly hack is here, because terraform serializes the
+      # embedded yaml files with "- |2", when there is more than
+      # one yamldocument in the embedded file. Kustomize does not understand
+      # that syntax and tries to parse the blocks content as a file, resulting
+      # in weird errors. so gnu sed with funny escaping is used to
+      # replace lines like "- |3" by "- |" (yaml block syntax).
+      # due to indendation this should not changes the embedded
+      # manifests themselves
+      "sed -i 's/^- |[0-9]\\+$/- |/g' /tmp/post_install/kustomization.yaml",
      "kubectl apply -k /tmp/post_install",
-      "rm -rf /tmp/post_install"
    ]
  }