github.com/rothwerx/packer@v0.9.0/website/source/docs/builders/googlecompute.html.markdown

github.com/rothwerx/packer@v0.9.0/website/source/docs/builders/googlecompute.html.markdown (about)

     1  ---
     2  description: |
     3      The `googlecompute` Packer builder is able to create images for use with Google
     4      Compute Engine (GCE) based on existing images. Google Compute Engine doesn't
     5      allow the creation of images from scratch.
     6  layout: docs
     7  page_title: Google Compute Builder
     8  ...
     9  
    10  # Google Compute Builder
    11  
    12  Type: `googlecompute`
    13  
    14  The `googlecompute` Packer builder is able to create
    15  [images](https://developers.google.com/compute/docs/images) for use with [Google
    16  Compute Engine](https://cloud.google.com/products/compute-engine)(GCE) based on
    17  existing images. Google Compute Engine doesn't allow the creation of images from
    18  scratch.
    19  
    20  ## Authentication
    21  
    22  Authenticating with Google Cloud services requires at most one JSON file, called
    23  the *account file*. The *account file* is **not** required if you are running
    24  the `googlecompute` Packer builder from a GCE instance with a
    25  properly-configured [Compute Engine Service
    26  Account](https://cloud.google.com/compute/docs/authentication).
    27  
    28  ### Running With a Compute Engine Service Account
    29  
    30  If you run the `googlecompute` Packer builder from a GCE instance, you can
    31  configure that instance to use a [Compute Engine Service
    32  Account](https://cloud.google.com/compute/docs/authentication). This will allow
    33  Packer to authenticate to Google Cloud without having to bake in a separate
    34  credential/authentication file.
    35  
    36  To create a GCE instance that uses a service account, provide the required
    37  scopes when launching the instance.
    38  
    39  For `gcloud`, do this via the `--scopes` parameter:
    40  
    41  ``` {.sh}
    42  gcloud compute --project YOUR_PROJECT instances create "INSTANCE-NAME" ... \
    43                 --scopes "https://www.googleapis.com/auth/compute" \
    44                          "https://www.googleapis.com/auth/devstorage.full_control" \
    45                 ...
    46  ```
    47  
    48  For the [Google Developers Console](https://console.developers.google.com):
    49  
    50  1.  Choose "Show advanced options"
    51  2.  Tick "Enable Compute Engine service account"
    52  3.  Choose "Read Write" for Compute
    53  4.  Chose "Full" for "Storage"
    54  
    55  **The service account will be used automatically by Packer as long as there is
    56  no *account file* specified in the Packer configuration file.**
    57  
    58  ### Running Without a Compute Engine Service Account
    59  
    60  The [Google Developers Console](https://console.developers.google.com) allows
    61  you to create and download a credential file that will let you use the
    62  `googlecompute` Packer builder anywhere. To make the process more
    63  straightforwarded, it is documented here.
    64  
    65  1.  Log into the [Google Developers
    66      Console](https://console.developers.google.com) and select a project.
    67  
    68  2.  Under the "APIs & Auth" section, click "Credentials."
    69  
    70  3.  Click the "Create new Client ID" button, select "Service account", and click
    71      "Create Client ID"
    72  
    73  4.  Click "Generate new JSON key" for the Service Account you just created. A
    74      JSON file will be downloaded automatically. This is your *account file*.
    75  
    76  ## Basic Example
    77  
    78  Below is a fully functioning example. It doesn't do anything useful, since no
    79  provisioners are defined, but it will effectively repackage an existing GCE
    80  image. The account_file is obtained in the previous section.  If it parses as
    81  JSON it is assumed to be the file itself, otherwise it is assumed to be
    82  the path to the file containing the JSON.
    83  
    84  ``` {.javascript}
    85  {
    86    "type": "googlecompute",
    87    "account_file": "account.json",
    88    "project_id": "my-project",
    89    "source_image": "debian-7-wheezy-v20150127",
    90    "zone": "us-central1-a"
    91  }
    92  ```
    93  
    94  ## Configuration Reference
    95  
    96  Configuration options are organized below into two categories: required and
    97  optional. Within each category, the available options are alphabetized and
    98  described.
    99  
   100  In addition to the options listed here, a
   101  [communicator](/docs/templates/communicator.html) can be configured for this
   102  builder.
   103  
   104  ### Required:
   105  
   106  -   `project_id` (string) - The project ID that will be used to launch instances
   107      and store images.
   108  
   109  -   `source_image` (string) - The source image to use to create the new
   110      image from. Example: `"debian-7-wheezy-v20150127"`
   111  
   112  -   `zone` (string) - The zone in which to launch the instance used to create
   113      the image. Example: `"us-central1-a"`
   114  
   115  ### Optional:
   116  
   117  -   `account_file` (string) - The JSON file containing your account credentials.
   118      Not required if you run Packer on a GCE instance with a service account.
   119      Instructions for creating file or using service accounts are above.
   120  
   121  -   `address` (string) - The name of a pre-allocated static external IP address.
   122      Note, must be the name and not the actual IP address.
   123  
   124  -   `disk_size` (integer) - The size of the disk in GB. This defaults to `10`,
   125      which is 10GB.
   126  
   127  -   `image_name` (string) - The unique name of the resulting image. Defaults to
   128      `"packer-{{timestamp}}"`.
   129  
   130  -   `image_description` (string) - The description of the resulting image.
   131  
   132  -   `instance_name` (string) - A name to give the launched instance. Beware that
   133      this must be unique. Defaults to `"packer-{{uuid}}"`.
   134  
   135  -   `machine_type` (string) - The machine type. Defaults to `"n1-standard-1"`.
   136  
   137  -   `metadata` (object of key/value strings)
   138  
   139  -   `network` (string) - The Google Compute network to use for the
   140      launched instance. Defaults to `"default"`.
   141  
   142  -   `preemptible` (boolean) - If true, launch a preembtible instance.
   143  
   144  -   `region` (string) - The region in which to launch the instance. Defaults to
   145      to the region hosting the specified `zone`.
   146  
   147  -   `state_timeout` (string) - The time to wait for instance state changes.
   148      Defaults to `"5m"`.
   149  
   150  -   `subnetwork` (string) - The Google Compute subnetwork to use for the launced
   151       instance. Only required if the `network` has been created with custom
   152       subnetting.
   153       Note, the region of the subnetwork must match the `region` or `zone` in
   154       which the VM is launched.
   155  
   156  -   `tags` (array of strings)
   157  
   158  -   `use_internal_ip` (boolean) - If true, use the instance's internal IP
   159      instead of its external IP during building.
   160  
   161  ## Gotchas
   162  
   163  Centos images have root ssh access disabled by default. Set `ssh_username` to
   164  any user, which will be created by packer with sudo access.
   165  
   166  The machine type must have a scratch disk, which means you can't use an
   167  `f1-micro` or `g1-small` to build images.