🐮✨ RKE2 Rancher HA Bootstrapper ✨🐮

Welcome to the easiest, chillest, and most 🔥 way to spin up Rancher High Availability (HA) clusters on AWS using RKE2!
Just vibe, tweak a config, run a test, and you're Rancher-ready. 🌈⚡️🚀

---

💡 TL;DR – Why This Rocks

✅ No Cert Manager needed — SSL is done via AWS ACM 🙌
✅ Secure by default — HTTPS from the jump 🔐
✅ All you gotta do:

1. 🛠️ Tweak the generated install.sh (if you even want to...)
2. 🚀 Run it — donezo.

We install Rancher using:

--set tls=external

Because ACM certs are already there, TLS is handled. No drama. Just Rancher 🐮💕

---

🧠 What This Repo Does

This repo helps you:

• 🌍 Deploy 3-node RKE2 HA clusters with Terraform
• 🧠 Auto-configure each node & wire them up over a secure ALB
• 🔒 Use AWS ACM for certs — no cert-manager required!
• ✍️ Generate a custom install.sh script to install Rancher in 1 command
• 🎯 All driven by a single test function, because... we love automation

---

📦 Directory Layout

Put your tool-config.yml next to this README — right at the project root:

.
├── README.md
├── tool-config.yml  🧙‍♂️ (put it here)
├── go.mod
├── terratest/
│   └── test.go
├── modules/
│   └── aws/

---

🧪 Spin It Up (HA Setup)

Run this to build everything (with timeout so it doesn’t hang forever):

go test -v -run TestHaSetup -timeout 60m ./terratest

🎉 This will:

• 🚀 Launch EC2s, ALBs, and Route53 DNS records
• 🔐 Setup TLS with AWS ACM certs
• 🧠 Bootstrap and join all 3 nodes into RKE2
• 📝 Drop a ready-to-run Rancher install.sh in each HA folder

---

🐮 Install Rancher

Navigate to your HA cluster directory (like high-availability-1/) and run:

./install.sh

This installs Rancher securely via ALB + ACM certs with TLS 🔒
No cert-manager needed. No cluster pain. Just good vibes and cattle ✨🐄

---

💣 Tear It Down (Cleanup)

When you're done, run cleanup:

go test -v -run TestHACleanup -timeout 20m ./terratest

💥 This will:

• 💨 Destroy all infra via Terraform
• 🧹 Clean up generated files and folders
• 🧼 Leave your AWS nice and tidy

---

🧾 Sample tool-config.yml

🔎 Where to find available rke2 k8s versions:

👨‍🌾🧙‍RKE2 v1.32.X Release Notes 👨‍🌾🧙‍♂️

aws:
  rsa_private_key: |
    -----BEGIN RSA PRIVATE KEY-----
    -----END RSA PRIVATE KEY-----

rancher:
  bootstrap_password: ""
  image_tag: "v2.11.0"
  version: "2.11.0"

k8s:
  version: "v1.31.4+rke2r1"

total_has: 2  # Number of HA clusters to create

tf_vars:
  aws_access_key: "super-secret-key"
  aws_secret_key: "super-secret-key"
  aws_prefix: "xyz" # your initials, keep it short! 
  aws_vpc: ""
  aws_subnet_a: ""
  aws_subnet_b: ""
  aws_subnet_c: ""
  aws_ami: ""
  aws_subnet_id: ""
  aws_security_group_id: ""
  aws_pem_key_name: ""
  aws_route53_fqdn: ""

---

📁 Output Example

Each HA setup creates a folder like:

high-availability-1/
├── install.sh         🐚 One-command Rancher installer
├── kube_config.yaml   📄 Your RKE2 kubeconfig

You're basically a Rancher wizard now 🧙‍♀️✨

---

🧡 Final Notes

This tool was built to make Rancher HA setup fun, secure, and dead simple.
With Terraform, RKE2, and ACM doing the heavy lifting — you just ride the Rancher wave 🌊🐄

---

Pull requests welcome. Questions welcome. Rancher users always welcome.
Happy HA'ing! 🌟🐮💫

---

🌟 Built with Go, Terraform, and Rancher love.