VPC clusters

clusters_setup/terraform/main.tf

@@ -28,7 +28,6 @@ provider "helm" {
 }
 
 provider "kubectl" {
-  load_config_file       = false
   host                   = module.gke_cluster.host
   token                  = module.gke_cluster.token
   cluster_ca_certificate = module.gke_cluster.cluster_ca_certificate

clusters_setup/terraform/modules/gke/cluster.tf

@@ -65,6 +65,7 @@ resource "google_container_cluster" "primary" {
   subnetwork = local.subnetwork
   enable_shielded_nodes = true
   enable_intranode_visibility = true
+  networking_mode = "VPC_NATIVE"
 
   release_channel {
     channel = local.releaseChannel
@@ -77,10 +78,16 @@ resource "google_container_cluster" "primary" {
     enabled = true
   }
 
+  ip_allocation_policy {}
+
   workload_identity_config {
     workload_pool = "decent-digit-629.svc.id.goog"
   }
 
+#  private_cluster_config {
+#    enable_private_nodes = true
+#  }
+
   binary_authorization {
     evaluation_mode = "PROJECT_SINGLETON_POLICY_ENFORCE"
   }

clusters_setup/terraform/variables.tf

@@ -93,7 +93,7 @@ variable "subnetwork" {
 }
 
 variable "kubernetesVersion" {
-  default = "1.26.5-gke.1400"
+  default = "1.27.5-gke.200"
 }
 
 variable "region" {