首頁 > 後端開發 > Python教學 > 使用 Terraform 和 Ansible 在 KVM 上自動部署 Flask 和 PostgreSQL

使用 Terraform 和 Ansible 在 KVM 上自動部署 Flask 和 PostgreSQL

DDD
發布: 2025-01-02 14:49:42
原創
978 人瀏覽過

?簡介

嗨,在這篇文章中,我們將使用 Libvirt 和 Terraform 在本地配置 2 個 KVM,之後,我們將使用 Ansible 部署 Flask 應用程式和 PostgreSQL。

內容

  • 專案架構
  • 要求
  • 建立KVM
  • 建立 Ansible 劇本
    • 安裝 Docker 的劇本
    • 安裝與設定 postgresql 的 Playbook
    • 部署 Flask 應用程式的 Playbook
    • 執行 Playbook 並測試
  • 結論

?專案架構

因此,我們將使用 Terraform 建立 2 個虛擬機,然後使用 Ansible 部署 Flask 專案和資料庫。

Automating Deployment of Flask and PostgreSQL on KVM with Terraform and Ansible

?要求

我使用 Ubuntu 22.04 LTS 作為該專案的作業系統。如果您使用不同的作業系統,請在安裝所需的依賴項時進行必要的調整。

此設定的主要先決條件是 KVM 管理程式。所以你需要在你的系統中安裝KVM。如果您使用 Ubuntu,可以按照以下步驟操作:

sudo apt -y install bridge-utils cpu-checker libvirt-clients libvirt-daemon qemu qemu-kvm
登入後複製
登入後複製
登入後複製

執行以下命令以確保您的處理器支援虛擬化功能:

$ kvm-ok

INFO: /dev/kvm exists
KVM acceleration can be used
登入後複製
登入後複製

安裝 Terraform

$ wget -O - https://apt.releases.hashicorp.com/gpg | sudo gpg --dearmor -o /usr/share/keyrings/hashicorp-archive-keyring.gpg
$ echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" | sudo tee /etc/apt/sources.list.d/hashicorp.list
$ sudo apt update && sudo apt install terraform -y
登入後複製
登入後複製

驗證安裝:

$ terraform version

Terraform v1.9.8
on linux_amd64
登入後複製
登入後複製

安裝 Ansible

$ sudo apt update
$ sudo apt install software-properties-common
$ sudo add-apt-repository --yes --update ppa:ansible/ansible
$ sudo apt install ansible -y
登入後複製
登入後複製

驗證安裝:

$ ansible --version

ansible [core 2.15.1]
...
登入後複製
登入後複製

建立KVM

我們將使用 libvirt 提供者和 Terraform 來部署 KVM 虛擬機器。

建立main.tf,只需指定要使用的提供者和版本:

terraform {
  required_providers {
    libvirt = {
      source = "dmacvicar/libvirt"
      version = "0.8.1"
    }
  }
}

provider "libvirt" {
  uri = "qemu:///system"
}

登入後複製
登入後複製

之後,執行 terraform init 指令來初始化環境:

$ terraform init

Initializing the backend...
Initializing provider plugins...
- Reusing previous version of hashicorp/template from the dependency lock file
- Reusing previous version of dmacvicar/libvirt from the dependency lock file
- Reusing previous version of hashicorp/null from the dependency lock file
- Using previously-installed hashicorp/template v2.2.0
- Using previously-installed dmacvicar/libvirt v0.8.1
- Using previously-installed hashicorp/null v3.2.3

Terraform has been successfully initialized!

You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.

If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
登入後複製
登入後複製

現在創建我們的變數.tf。此變數.tf 檔案定義 libvirt 磁碟區路徑的輸入、作為 VM 作業系統的 Ubuntu 20.04 映像 URL 以及 VM 主機名稱清單。

variable "libvirt_disk_path" {
  description = "path for libvirt pool"
  default     = "default"
}

variable "ubuntu_20_img_url" {
  description = "ubuntu 20.04 image"
  default     = "https://cloud-images.ubuntu.com/releases/focal/release/ubuntu-20.04-server-cloudimg-amd64.img"
}

variable "vm_hostnames" {
  description = "List of VM hostnames"
  default     = ["vm1", "vm2"]
}
登入後複製
登入後複製

讓我們更新 main.tf:

resource "null_resource" "cache_image" {
  provisioner "local-exec" {
    command = "wget -O /tmp/ubuntu-20.04.qcow2 ${var.ubuntu_20_img_url}"
  }
}

resource "libvirt_volume" "base" {
  name   = "base.qcow2"
  source = "/tmp/ubuntu-20.04.qcow2"
  pool   = var.libvirt_disk_path
  format = "qcow2"
  depends_on = [null_resource.cache_image]
}
# Volume for VM with size 10GB
resource "libvirt_volume" "ubuntu20-qcow2" {
  count          = length(var.vm_hostnames)
  name           = "ubuntu20-${count.index}.qcow2"
  base_volume_id = libvirt_volume.base.id
  pool           = var.libvirt_disk_path
  size           = 10737418240  # 10GB
}

data "template_file" "user_data" {
  count    = length(var.vm_hostnames)
  template = file("${path.module}/config/cloud_init.yml")
}

data "template_file" "network_config" {
  count    = length(var.vm_hostnames)
  template = file("${path.module}/config/network_config.yml")
}

resource "libvirt_cloudinit_disk" "commoninit" {
  count          = length(var.vm_hostnames)
  name           = "commoninit-${count.index}.iso"
  user_data      = data.template_file.user_data[count.index].rendered
  network_config = data.template_file.network_config[count.index].rendered
  pool           = var.libvirt_disk_path
}

resource "libvirt_domain" "domain-ubuntu" {
  count  = length(var.vm_hostnames)
  name   = var.vm_hostnames[count.index]
  memory = "1024" # VM memory
  vcpu   = 1 # VM CPU

  cloudinit = libvirt_cloudinit_disk.commoninit[count.index].id

  network_interface {
    network_name   = "default"
    wait_for_lease = true
    hostname       = var.vm_hostnames[count.index]
  }

  console {
    type        = "pty"
    target_port = "0"
    target_type = "serial"
  }

  console {
    type        = "pty"
    target_type = "virtio"
    target_port = "1"
  }

  disk {
    volume_id = libvirt_volume.ubuntu20-qcow2[count.index].id
  }

  graphics {
    type        = "spice"
    listen_type = "address"
    autoport    = true
  }
}
登入後複製
登入後複製

此腳本將使用 Libvirt 提供者設定多個 KVM 虛擬機器。它下載 Ubuntu 20.04 基本映像,為每個 VM 複製它,為使用者和網路設定配置 cloud-init,並部署具有指定主機名稱、1GB 記憶體和 SPICE 圖形的 VM。此設定會根據 var.vm_hostnames 中提供的主機名稱數量動態調整。

正如我所提到的,我正在使用 cloud-init,所以讓我們在 config 目錄下設定網路設定和 cloud init:

mkdir config/
登入後複製
登入後複製

然後建立我們的 config/cloud_init.yml,只需確保在設定中配置用於 ssh 存取的公共 ssh 金鑰:

#cloud-config
runcmd:
  - sed -i '/PermitRootLogin/d' /etc/ssh/sshd_config
  - echo "PermitRootLogin yes" >> /etc/ssh/sshd_config
  - systemctl restart sshd
ssh_pwauth: true
disable_root: false
chpasswd:
  list: |
    root:cloudy24
  expire: false
users:
  - name: ubuntu
    gecos: ubuntu
    groups:
      - sudo
    sudo:
      - ALL=(ALL) NOPASSWD:ALL
    home: /home/ubuntu
    shell: /bin/bash
    lock_passwd: false
    ssh_authorized_keys:
      - ssh-rsa AAAA...
登入後複製
登入後複製

然後是網路配置,在 config/network_config.yml 中:

version: 2
ethernets:
  ens3:
    dhcp4: true
登入後複製
登入後複製

我們的專案結構應該如下所示:

sudo apt -y install bridge-utils cpu-checker libvirt-clients libvirt-daemon qemu qemu-kvm
登入後複製
登入後複製
登入後複製

現在運行一個計劃,看看會做什麼:

$ kvm-ok

INFO: /dev/kvm exists
KVM acceleration can be used
登入後複製
登入後複製

並執行 terraform apply 來運行我們的部署:

$ wget -O - https://apt.releases.hashicorp.com/gpg | sudo gpg --dearmor -o /usr/share/keyrings/hashicorp-archive-keyring.gpg
$ echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" | sudo tee /etc/apt/sources.list.d/hashicorp.list
$ sudo apt update && sudo apt install terraform -y
登入後複製
登入後複製

使用 virsh 指令驗證虛擬機器建立:

$ terraform version

Terraform v1.9.8
on linux_amd64
登入後複製
登入後複製

取得實例IP位址:

$ sudo apt update
$ sudo apt install software-properties-common
$ sudo add-apt-repository --yes --update ppa:ansible/ansible
$ sudo apt install ansible -y
登入後複製
登入後複製

嘗試使用 ubuntu 使用者存取虛擬機器:

$ ansible --version

ansible [core 2.15.1]
...
登入後複製
登入後複製

建立 Ansible 劇本

現在讓我們建立 Ansible Playbook 以在 Docker 上部署 Flask 和 Postgresql。首先你需要建立 ansible 目錄和 ansible.cfg 檔案:

terraform {
  required_providers {
    libvirt = {
      source = "dmacvicar/libvirt"
      version = "0.8.1"
    }
  }
}

provider "libvirt" {
  uri = "qemu:///system"
}

登入後複製
登入後複製
$ terraform init

Initializing the backend...
Initializing provider plugins...
- Reusing previous version of hashicorp/template from the dependency lock file
- Reusing previous version of dmacvicar/libvirt from the dependency lock file
- Reusing previous version of hashicorp/null from the dependency lock file
- Using previously-installed hashicorp/template v2.2.0
- Using previously-installed dmacvicar/libvirt v0.8.1
- Using previously-installed hashicorp/null v3.2.3

Terraform has been successfully initialized!

You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.

If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
登入後複製
登入後複製

然後建立名為hosts的庫存檔案:

variable "libvirt_disk_path" {
  description = "path for libvirt pool"
  default     = "default"
}

variable "ubuntu_20_img_url" {
  description = "ubuntu 20.04 image"
  default     = "https://cloud-images.ubuntu.com/releases/focal/release/ubuntu-20.04-server-cloudimg-amd64.img"
}

variable "vm_hostnames" {
  description = "List of VM hostnames"
  default     = ["vm1", "vm2"]
}
登入後複製
登入後複製

使用 ansible ping 指令檢查我們的虛擬機器:

resource "null_resource" "cache_image" {
  provisioner "local-exec" {
    command = "wget -O /tmp/ubuntu-20.04.qcow2 ${var.ubuntu_20_img_url}"
  }
}

resource "libvirt_volume" "base" {
  name   = "base.qcow2"
  source = "/tmp/ubuntu-20.04.qcow2"
  pool   = var.libvirt_disk_path
  format = "qcow2"
  depends_on = [null_resource.cache_image]
}
# Volume for VM with size 10GB
resource "libvirt_volume" "ubuntu20-qcow2" {
  count          = length(var.vm_hostnames)
  name           = "ubuntu20-${count.index}.qcow2"
  base_volume_id = libvirt_volume.base.id
  pool           = var.libvirt_disk_path
  size           = 10737418240  # 10GB
}

data "template_file" "user_data" {
  count    = length(var.vm_hostnames)
  template = file("${path.module}/config/cloud_init.yml")
}

data "template_file" "network_config" {
  count    = length(var.vm_hostnames)
  template = file("${path.module}/config/network_config.yml")
}

resource "libvirt_cloudinit_disk" "commoninit" {
  count          = length(var.vm_hostnames)
  name           = "commoninit-${count.index}.iso"
  user_data      = data.template_file.user_data[count.index].rendered
  network_config = data.template_file.network_config[count.index].rendered
  pool           = var.libvirt_disk_path
}

resource "libvirt_domain" "domain-ubuntu" {
  count  = length(var.vm_hostnames)
  name   = var.vm_hostnames[count.index]
  memory = "1024" # VM memory
  vcpu   = 1 # VM CPU

  cloudinit = libvirt_cloudinit_disk.commoninit[count.index].id

  network_interface {
    network_name   = "default"
    wait_for_lease = true
    hostname       = var.vm_hostnames[count.index]
  }

  console {
    type        = "pty"
    target_port = "0"
    target_type = "serial"
  }

  console {
    type        = "pty"
    target_type = "virtio"
    target_port = "1"
  }

  disk {
    volume_id = libvirt_volume.ubuntu20-qcow2[count.index].id
  }

  graphics {
    type        = "spice"
    listen_type = "address"
    autoport    = true
  }
}
登入後複製
登入後複製

現在建立 playbook.yml 和角色,此 playbook 將安裝和設定 Docker、Flask 和 PostgreSQL:

mkdir config/
登入後複製
登入後複製

安裝 Docker 的 Playbook

現在建立一個名為 Roles/docker 的新目錄:

#cloud-config
runcmd:
  - sed -i '/PermitRootLogin/d' /etc/ssh/sshd_config
  - echo "PermitRootLogin yes" >> /etc/ssh/sshd_config
  - systemctl restart sshd
ssh_pwauth: true
disable_root: false
chpasswd:
  list: |
    root:cloudy24
  expire: false
users:
  - name: ubuntu
    gecos: ubuntu
    groups:
      - sudo
    sudo:
      - ALL=(ALL) NOPASSWD:ALL
    home: /home/ubuntu
    shell: /bin/bash
    lock_passwd: false
    ssh_authorized_keys:
      - ssh-rsa AAAA...
登入後複製
登入後複製

在docker中建立一個名為tasks的新目錄,然後建立新檔案main.yml。此檔案將安裝 Docker 和 Docker Compose:

version: 2
ethernets:
  ens3:
    dhcp4: true
登入後複製
登入後複製
$ tree
.
├── config
│   ├── cloud_init.yml
│   └── network_config.yml
├── main.tf
└── variables.tf
登入後複製

安裝並設定 postgresql 的 Playbook

然後建立一個名為 psql 的新目錄,建立一個名為 vars、tempalates &tasks 的子目錄:

$  terraform plan

data.template_file.user_data[1]: Reading...
data.template_file.user_data[0]: Reading...
data.template_file.network_config[1]: Reading...
data.template_file.network_config[0]: Reading...
...

Plan: 8 to add, 0 to change, 0 to destroy
登入後複製

之後,在 vars 中建立 main.yml。這些是用於設定使用者名稱、密碼等的變數:

$ terraform apply

...
null_resource.cache_image: Creation complete after 10m36s [id=4239391010009470471]
libvirt_volume.base: Creating...
libvirt_volume.base: Creation complete after 3s [id=/var/lib/libvirt/images/base.qcow2]
libvirt_volume.ubuntu20-qcow2[1]: Creating...
libvirt_volume.ubuntu20-qcow2[0]: Creating...
libvirt_volume.ubuntu20-qcow2[1]: Creation complete after 0s [id=/var/lib/libvirt/images/ubuntu20-1.qcow2]
libvirt_volume.ubuntu20-qcow2[0]: Creation complete after 0s [id=/var/lib/libvirt/images/ubuntu20-0.qcow2]
libvirt_domain.domain-ubuntu[1]: Creating...
...

libvirt_domain.domain-ubuntu[1]: Creation complete after 51s [id=6221f782-48b7-49a4-9eb9-fc92970f06a2]

Apply complete! Resources: 8 added, 0 changed, 0 destroyed
登入後複製

接下來,我們將建立一個名為 docker-compose.yml.j2 的 jinja 檔案。使用此文件,我們將建立 postgresql 容器:

$ virsh list

 Id   Name   State
----------------------
 1    vm1    running
 2    vm2    running
登入後複製

接下來,為任務建立 main.yml。因此,我們將複製 docker-compose.yml.j2 並使用 docker compose 運行:

$ virsh net-dhcp-leases --network default

Expiry Time           MAC address         Protocol   IP address          Hostname   Client ID or DUID
-----------------------------------------------------------------------------------------------------------------------------------------------
2024-12-09 19:50:00   52:54:00:2e:0e:86   ipv4       192.168.122.19/24   vm1        ff:b5:5e:67:ff:00:02:00:00:ab:11:b0:43:6a:d8:bc:16:30:0d
2024-12-09 19:50:00   52:54:00:86:d4:ca   ipv4       192.168.122.15/24   vm2        ff:b5:5e:67:ff:00:02:00:00:ab:11:39:24:8c:4a:7e:6a:dd:78
登入後複製

部署 Flask 應用程式的 Playbook

首先,您需要建立一個名為flask的目錄,然後再次建立子目錄:

$ ssh ubuntu@192.168.122.15

The authenticity of host '192.168.122.15 (192.168.122.15)' can't be established.
ED25519 key fingerprint is SHA256:Y20zaCcrlOZvPTP+/qLLHc7vJIOca7QjTinsz9Bj6sk.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '192.168.122.15' (ED25519) to the list of known hosts.
Welcome to Ubuntu 20.04.6 LTS (GNU/Linux 5.4.0-200-generic x86_64)
...

ubuntu@ubuntu:~$
登入後複製

接下來,將 main.yml 加入變數中。該文件引用了先前的 posgtresql 變量,並添加了 VM2(資料庫 VM)的 IP 位址:

$ mkdir ansible && cd ansible
登入後複製

接下來,建立 config.py.j2 到模板。該檔案將取代 Flask 專案中的舊設定檔:

[defaults]
inventory = hosts
host_key_checking = True
deprecation_warnings = False
collections = ansible.posix, community.general, community.postgresql
登入後複製

接下來,建立 docker-compose.yml.j2 到範本。有了這個文件,我們將使用 docker compose 建立一個容器:

[vm1]
192.168.122.19 ansible_user=ubuntu

[vm2]
192.168.122.15 ansible_user=ubuntu
登入後複製

接下來,在任務中建立main.yml。使用此文件,我們將克隆 Flask 項目,新增 compose 文件,取代 config.py 並使用 docker compose 建立新容器:

$ ansible -m ping all

192.168.122.15 | SUCCESS => {
    "ansible_facts": {
        "discovered_interpreter_python": "/usr/bin/python3"
    },
    "changed": false,
    "ping": "pong"
}
192.168.122.19 | SUCCESS => {
    "ansible_facts": {
        "discovered_interpreter_python": "/usr/bin/python3"
    },
    "changed": false,
    "ping": "pong"
}
登入後複製

我們的專案結構應該如下所示:

---
- name: Deploy Flask
  hosts: vm1
  become: true
  remote_user: ubuntu
  roles:
    - flask
    - config

- name: Deploy Postgresql
  hosts: vm2
  become: true
  remote_user: ubuntu
  roles:
    - psql
    - config
登入後複製

運行 Playbook 並進行測試

最後,讓我們執行 ansible-playbook 來部署 PostgreSQL 和 Flask:

$ mkdir roles
$ mkdir docker
登入後複製

完成後,確保沒有錯誤即可。然後你會看到創建了兩個。 VM1 中是 Flask,VM2 中是 Postgresql:

sudo apt -y install bridge-utils cpu-checker libvirt-clients libvirt-daemon qemu qemu-kvm
登入後複製
登入後複製
登入後複製

嘗試使用瀏覽器存取應用程序,只需輸入 http://:

Automating Deployment of Flask and PostgreSQL on KVM with Terraform and Ansible

嘗試新增任務,然後資料將新增至資料庫:

Automating Deployment of Flask and PostgreSQL on KVM with Terraform and Ansible

結論

最後,感謝您閱讀本文。如果您有任何問題、建議或回饋,請隨時發表評論。

NB:專案倉庫:danielcristho/that-i-write

以上是使用 Terraform 和 Ansible 在 KVM 上自動部署 Flask 和 PostgreSQL的詳細內容。更多資訊請關注PHP中文網其他相關文章!

來源:dev.to
本網站聲明
本文內容由網友自願投稿,版權歸原作者所有。本站不承擔相應的法律責任。如發現涉嫌抄襲或侵權的內容,請聯絡admin@php.cn
熱門教學
更多>
最新下載
更多>
網站特效
網站源碼
網站素材
前端模板