Futureproof securitygroup logic.

iac_vars.yaml

@@ -1 +1,5 @@
 numnodes: 3
+kubesecgroups:
+  - allegress
+  - kubenode
+  - ssh-from-jumphost

kubenodes.yaml

@@ -25,10 +25,12 @@
     name: kube{{ item }}-matrix-test-sunet-se-port
     network: public
     security_groups: |-
-      {%- set secgroupallegress=secgroups.security_groups|selectattr('name', 'equalto', 'allegress')| first -%}
+      {%- set secgrlist = [] -%}
-      {% set secgroupkubenode=secgroups.security_groups|selectattr('name', 'equalto', 'kubenode')| first -%}
+      {%- for sg in kubesecgroups -%}
-      {% set secgroupssh=secgroups.security_groups|selectattr('name', 'equalto', 'ssh-from-jumphost')| first -%}
+      {% set sgdict=secgroups.security_groups|selectattr('name', 'equalto', sg )| first -%}
-      {{ secgroupallegress['id'] }},{{secgroupkubenode['id']}},{{secgroupssh['id'] -}}
+      {{- secgrlist.append(sgdict['id']) -}}
+      {%- endfor -%}
+      {{ secgrlist | join(',') }}
   loop: "{{ range(1, numnodes + 1 )|list }}"
 
 - name: Launch kubernetes instances
@@ -42,6 +44,7 @@
       - "kube{{ item }}-matrix-test-sunet-se-snapvol"
     nics: 
       - port-name: "kube{{ item }}-matrix-test-sunet-se-port"
+    security_groups: "{{ kubesecgroups | join(',') }}"
     userdata: |
       {{ lookup('ansible.builtin.template', 'kubenodes-user.yaml.j2') | indent(4, False ) }}
   loop: "{{ range(1, numnodes + 1 )|list }}"