Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Specify "dotted" k8s labels for node pools?

Tags:

google-kubernetes-engine

terraform

Kubernetes supports dots in metadata label keys (for example app.role), and indeed this seems to be a common convention.

The terraform configuration language (0.12) doesn't support dots in argument names, so labels of this form cannot be specified. For example in a google_container_node_pool configuration, I want to specify this:

resource "google_container_node_pool" "my-node-pool" {
  ...
  labels = {
    app.role = web
  }
}

Is there a workaround?

note: slashes (/) are quite common in k8s labels as well..

UPDATE: in case anyone stumbles on this same issue down the road, I figured out the root of my issue. I had incorrectly specified the labels argument as a block by omitting the =. So it looked like this:

labels {
  "app.role" = "web"
}

This yielded the following error, which pointed me in the wrong direction:

Error: Invalid argument name

  on main.tf line 45, in resource "google_container_node_pool" "primary_preemptible_nodes":
  45:       "app.role" = "web"

Argument names must not be quoted.

I noticed and fixed the missing = but I didn't put it together that map keys have different syntax from argument names.

like image 361
Kris Pruden Avatar asked Oct 19 '25 06:10

Kris Pruden

1 Answers

I verified the suggestion from @ydaetskcoR that wrapping the label in quotes works. Here is the snippet defining the node pool that I created (using Terraform v0.11.13):

resource "google_container_node_pool" "node_pool" {
  cluster = "${google_container_cluster.cluster.name}"
  zone = "${var.cluster_location}"

  initial_node_count = "${var.node_count}"
  autoscaling {
    min_node_count = 1
    max_node_count = 5
  }
  management {
    auto_repair = true
    auto_upgrade = true
  }
  node_config {
    machine_type = "${var.machine_type}"

    oauth_scopes = [
      "https://www.googleapis.com/auth/logging.write",
      "https://www.googleapis.com/auth/monitoring",
      "https://www.googleapis.com/auth/devstorage.read_only",
    ]

    metadata {
      disable-legacy-endpoints = "true"
    }
    labels = {
      "app.role" = "web"
    }
  }
}

edit: I also verified that the same works with terraform 0.12.3.

like image 159
Robert Bailey Avatar answered Oct 22 '25 01:10

Robert Bailey
Sign in to Comment

Related questions

Terraform azure provider gave me "features required field not set"
How to enable diagnostic logs on Virtual Machine Scale Set or Load Balancer created by AKS cluster resource in terraform?
How can I get the Instance ID of the EMR master instance in Terraform?
How can I rename a subnet in gcp?
Terraform - Create Snapshot of EBS and then convert Snapshot to EBS and attach to an EC2
Terraform - Create type constraints for type Map
Terraform conditional argument block
How can I reference the map variable in the terraform? <Azure>
Terraform Azure VM SSH Key
How to update the helm release through terraform
Not able to enable SQL Auditing and sending the logs to a Pvt Endpoint enabled Storage Account
Terraform 0.13 - Modules, for_each and providers
Terraform - How To Flatten A List With In a List Of Objects
Role Switching ( assume role ) with AWS and Terraform
Map all existing aws security groups in terraform
Terraform Azure AKS - How to install azure-keyvault-secrets-provider add-on
Where can I get the list of available sku_names of Azure MySQL DB for using Terraform
How to make Terraform continue with execution and ignore an error with resource creation during terraform apply?
Creating the topic rule does not create the trigger on the lambda
Terraform (AWS): How to get DNS name of Load Balancer by its ARN?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!