Add e2e test for RKE2 ClusterClass

Signed-off-by: Danil-Grigorev <[email protected]>

Author: Danil-Grigorev

azure/scope/cluster.go

@@ -1031,13 +1031,10 @@ func (s *ClusterScope) SetControlPlaneSecurityRules() {
 	subnet := s.ControlPlaneSubnet()
 
 	if subnet.SecurityGroup.SecurityRules == nil {
-		subnet := s.ControlPlaneSubnet()
-
 		s.AzureCluster.Spec.NetworkSpec.UpdateControlPlaneSubnet(subnet)
 	}
 
 	if subnet.GetSecurityRuleByDestination("22") == nil {
-		subnet := s.ControlPlaneSubnet()
 		subnet.SecurityGroup.SecurityRules = append(s.ControlPlaneSubnet().SecurityGroup.SecurityRules,
 			infrav1.SecurityRule{
 				Name:             "allow_ssh",
@@ -1057,7 +1054,6 @@ func (s *ClusterScope) SetControlPlaneSecurityRules() {
 
 	port := strconv.Itoa(int(s.APIServerPort()))
 	if subnet.GetSecurityRuleByDestination(port) == nil {
-		subnet := s.ControlPlaneSubnet()
 		subnet.SecurityGroup.SecurityRules = append(s.ControlPlaneSubnet().SecurityGroup.SecurityRules, infrav1.SecurityRule{
 			Name:             "allow_apiserver",
 			Description:      "Allow K8s API Server",

templates/cluster-template-clusterclass-rke2.yaml

@@ -0,0 +1,34 @@
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: AzureClusterTemplate
+metadata:
+  name: ${CLUSTER_NAME}-azure-cluster
+spec:
+  template:
+    spec:
+      identityRef:
+        apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+        kind: AzureClusterIdentity
+        name: ${CLUSTER_IDENTITY_NAME}
+      networkSpec:
+        additionalControlPlaneLBPorts:
+        - name: rke2
+          port: 9345
+        subnets:
+        - name: control-plane-subnet
+          role: control-plane
+          securityGroup:
+            securityRules:
+              - name: "allow_port_9345"
+                description: "Allow port 9345 for RKE2"
+                direction: "Inbound"
+                priority: 2203
+                protocol: "Tcp"
+                destination: "*"
+                destinationPorts: "9345"
+                source: "*"
+                sourcePorts: "*"
+                action: "Allow"
+        - name: node-subnet
+          natGateway:
+            name: node-natgateway
+          role: node

templates/flavors/clusterclass-rke2/azure-cluster-template.yaml

@@ -0,0 +1,10 @@
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: AzureMachineTemplate
+metadata:
+  name: ${CLUSTER_NAME}-control-plane
+spec:
+  template:
+    spec:
+      osDisk:
+        diskSizeGB: 128
+        osType: Linux

templates/flavors/clusterclass-rke2/azure-machine-template-controlplane.yaml

@@ -0,0 +1,10 @@
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: AzureMachineTemplate
+metadata:
+  name: ${CLUSTER_NAME}-worker
+spec:
+  template:
+    spec:
+      osDisk:
+        diskSizeGB: 30
+        osType: Linux