The Application Gateway Ingress Controller allows the Azure Application Gateway to be used as the ingress for an Azure Kubernetes Service aka AKS cluster. As shown in the figure below, the ingress controller runs as a pod within the AKS cluster. It consumes Kubernetes Ingress Resources and converts them to an Azure Application Gateway configuration which allows the gateway to load-balance traffic to Kubernetes pods.
This module helps in deploying the necessary resources for the greenfield deployment of necessary resources for AKS cluster with Application Gateway as ingress controller.
Refer to the tutorials to understand how you can expose an AKS service over HTTP or HTTPS, to the internet, using an Azure Application Gateway.
resource "azurerm_resource_group" "test" {
name = "testResourceGroup1"
location = "West US"
tags {
environment = "dev"
costcenter = "it"
}
}
module "appgw-ingress-k8s-cluster" {
source = "Azure/appgw-ingress-k8s-cluster/azurerm"
version = "0.1.0"
resource_group_name = azurerm_resource_group.test.name
location = "westus"
aks_service_principal_app_id = "<App ID of the service principal>"
aks_service_principal_client_secret = "<Client secret of the service principal>"
aks_service_principal_object_id = "<Object ID of the service principal>"
tags = {
environment = "dev"
costcenter = "it"
}
}
Originally created by Vaijanath Angadihiremath
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.microsoft.com.
When you submit a pull request, a CLA-bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., label, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.