feat: add ansible

Author: pythoninthegrass

.gitignore

@@ -2,6 +2,7 @@
 grafana-config.ini
 dashboard.yml
 node-exporter.json
+playbooks/*
 prometheus.yml
 tfplan
 .terraform.lock.hcl
@@ -68,3 +69,7 @@ override.tf.json
 # Ignore CLI configuration files
 .terraformrc
 terraform.rc
+
+# INCLUDE
+!**/*.example
+!**/.gitkeep

ansible.tf

@@ -0,0 +1,77 @@
+resource "ansible_group" "node_exporters" {
+  name = "node_exporters"
+  variables = {
+    node_exporter_port  = var.node_exporter_port
+    node_exporter_image = docker_image.node_exporter.name
+  }
+}
+
+resource "local_file" "ansible_inventory" {
+  filename = "${path.module}/hosts"
+  content  = "placeholder"
+}
+
+resource "ansible_host" "node_exporter_hosts" {
+  for_each = { for host in var.node_exporter_hosts : host.name => host }
+
+  name   = each.value.name
+  groups = [ansible_group.node_exporters.name]
+
+  variables = {
+    ansible_host                 = each.value.ip
+    ansible_user                 = each.value.ssh_user
+    ansible_port                 = each.value.ssh_port
+    ansible_ssh_private_key_file = var.ssh_private_key_path
+  }
+}
+
+resource "local_file" "node_exporter_playbook" {
+  filename = "${path.module}/playbooks/node_exporter.yml"
+  content  = <<-EOF
+    ---
+    - hosts: node_exporters
+      become: true
+      tasks:
+        - name: Pull node-exporter image
+          docker_image:
+            name: "{{ node_exporter_image }}"
+            source: pull
+            force_source: yes
+
+        - name: Run node-exporter container
+          docker_container:
+            name: node-exporter
+            image: "{{ node_exporter_image }}"
+            state: started
+            restart_policy: unless-stopped
+            ports:
+              - "{{ node_exporter_port }}:9100"
+            destroy_grace_seconds: 10
+            restart: yes
+            force_kill: yes
+            recreate: yes
+  EOF
+}
+
+resource "null_resource" "run_ansible" {
+  depends_on = [
+    local_file.node_exporter_playbook,
+    ansible_host.node_exporter_hosts,
+    ansible_group.node_exporters,
+    local_file.ansible_inventory
+  ]
+
+  provisioner "local-exec" {
+    command = "ansible-playbook -i ${path.module}/ansible_inventory ${path.module}/playbooks/node_exporter.yml"
+
+    environment = {
+      ANSIBLE_HOST_KEY_CHECKING = "False"
+    }
+  }
+
+  triggers = {
+    playbook_hash = local_file.node_exporter_playbook.content
+    hosts_hash    = jsonencode(ansible_host.node_exporter_hosts)
+    image_hash    = docker_image.node_exporter.repo_digest
+  }
+}

main.tf

@@ -30,12 +30,14 @@ resource "docker_container" "prometheus" {
     name = docker_network.promgraf_network.name
   }
 
+  restart = "unless-stopped"
+
+  destroy_grace_seconds = 10
+
   depends_on = [
     docker_volume.prometheus_data,
     local_file.prometheus_config
   ]
-
-  destroy_grace_seconds = 10
 }
 
 resource "docker_container" "grafana" {
@@ -78,6 +80,9 @@ resource "docker_container" "grafana" {
   networks_advanced {
     name = docker_network.promgraf_network.name
   }
+  restart = "unless-stopped"
+
+  destroy_grace_seconds = 10
 
   depends_on = [
     docker_volume.grafana_data,
@@ -87,8 +92,6 @@ resource "docker_container" "grafana" {
     local_file.node_exporter_dashboard,
     local_file.grafana_datasource
   ]
-
-  destroy_grace_seconds = 10
 }
 
 resource "local_file" "grafana_datasource" {
@@ -108,12 +111,17 @@ resource "docker_container" "node_exporter" {
   networks_advanced {
     name = docker_network.promgraf_network.name
   }
+
+  restart = "unless-stopped"
+
+  destroy_grace_seconds = 10
 }
 
 resource "local_file" "prometheus_config" {
   content = templatefile("${path.module}/config/prometheus.yml.tpl", {
-    prometheus_port    = var.prometheus_port
-    node_exporter_port = var.node_exporter_port
+    prometheus_port     = var.prometheus_port
+    node_exporter_port  = var.node_exporter_port
+    node_exporter_hosts = var.node_exporter_hosts
   })
   filename = "${path.module}/config/prometheus.yml"
 }
@@ -141,11 +149,7 @@ resource "local_file" "node_exporter_dashboard" {
 }
 
 resource "null_resource" "wait_for_containers" {
-  count = length([
-    docker_container.prometheus.id,
-    docker_container.grafana.id,
-    docker_container.node_exporter.id
-  ])
+  count = 1
 
   depends_on = [
     docker_container.prometheus,
@@ -157,3 +161,13 @@ resource "null_resource" "wait_for_containers" {
     command = "sleep 10"
   }
 }
+
+resource "null_resource" "wait_for_remote_containers" {
+  depends_on = [
+    null_resource.run_ansible
+  ]
+
+  provisioner "local-exec" {
+    command = "sleep 10"
+  }
+}

outputs.tf

@@ -1,4 +1,71 @@
-# output "output" {
-#   value       = terraform_data.this.output
-#   description = "This is an example of an output."
-# }
+# Prometheus outputs
+output "prometheus_url" {
+  description = "URL to access Prometheus UI"
+  value       = "http://localhost:${var.prometheus_port}"
+}
+
+output "prometheus_container_id" {
+  description = "ID of the Prometheus container"
+  value       = docker_container.prometheus.id
+}
+
+# Grafana outputs
+output "grafana_url" {
+  description = "URL to access Grafana UI"
+  value       = "http://localhost:${var.grafana_port}"
+}
+
+output "grafana_container_id" {
+  description = "ID of the Grafana container"
+  value       = docker_container.grafana.id
+}
+
+output "grafana_credentials" {
+  description = "Grafana login credentials"
+  value = {
+    username = var.grafana_admin_user
+    password = nonsensitive(var.grafana_admin_password) # Mark as non-sensitive for output
+  }
+  sensitive = true
+}
+
+# Node Exporter outputs
+output "local_node_exporter" {
+  description = "Local node-exporter details"
+  value = {
+    url          = "http://localhost:${var.node_exporter_port}/metrics"
+    container_id = docker_container.node_exporter.id
+    network      = docker_network.promgraf_network.name
+  }
+}
+
+output "remote_node_exporters" {
+  description = "Remote node-exporter details"
+  value = {
+    for host in var.node_exporter_hosts : host.name => {
+      url      = "http://${host.ip}:${var.node_exporter_port}/metrics"
+      host     = host.ip
+      ssh_user = host.ssh_user
+    }
+  }
+}
+
+# Network info
+output "monitoring_network" {
+  description = "Docker network details"
+  value = {
+    name = docker_network.promgraf_network.name
+    id   = docker_network.promgraf_network.id
+  }
+}
+
+# Configuration files
+output "config_files" {
+  description = "Paths to important configuration files"
+  value = {
+    prometheus_config = local_file.prometheus_config.filename
+    grafana_config    = local_file.grafana_config.filename
+    dashboards_path   = "${path.module}/config/grafana/dashboards"
+    datasources_path  = "${path.module}/config/grafana/provisioning/datasources"
+  }
+}

playbooks/.gitkeep

@@ -4,6 +4,10 @@ terraform {
       source  = "kreuzwerker/docker"
       version = "~> 3.0.2"
     }
+    ansible = {
+      source  = "ansible/ansible"
+      version = "~> 1.3.0"
+    }
   }
 }
 
@@ -13,8 +17,6 @@ provider "docker" {
     address     = "https://index.docker.io/v1/"
     config_file = pathexpand("~/.docker/config.json")
   }
-  registry_auth {
-    address     = "ghcr.io"
-    config_file = pathexpand("~/.docker/config.json")
-  }
 }
+
+provider "ansible" {}

providers.tf

@@ -21,6 +21,7 @@ resource "docker_image" "grafana" {
 }
 
 resource "docker_image" "node_exporter" {
-  name = "prom/node-exporter:latest"
+  name         = "prom/node-exporter:latest"
+  keep_locally = true
 }
 

resources.tf

@@ -13,6 +13,16 @@ variable "node_exporter_port" {
   default     = 9100
 }
 
+variable "node_exporter_hosts" {
+  description = "List of hosts for node-exporter deployment"
+  type = list(object({
+    name     = string
+    ip       = string
+    ssh_user = string
+    ssh_port = number
+  }))
+}
+
 variable "grafana_admin_user" {
   description = "The Grafana admin username"
   default     = "admin"
@@ -28,3 +38,14 @@ variable "grafana_datasource_name" {
   type        = string
   default     = "Prometheus"
 }
+
+variable "ssh_private_key_path" {
+  description = "Path to SSH private key for Ansible"
+  type        = string
+}
+
+variable "ssh_port" {
+  description = "SSH port for Ansible connections"
+  type        = number
+  default     = 22
+}