feat: output working kubeconfig for new cluster

k3s_cluster_v2/k3s.tf

@@ -53,38 +53,38 @@ provider "kubernetes" {
   client_key             = module.k3s.kubernetes.client_key
 }
 
-resource "kubernetes_service_account" "bootstrap" {
+resource "kubernetes_service_account" "admin" {
   depends_on = [module.k3s.kubernetes_ready]
 
   metadata {
-    name      = "bootstrap"
+    name      = "admin"
     namespace = "default"
   }
 }
 
-resource "kubernetes_cluster_role_binding" "boostrap" {
+resource "kubernetes_cluster_role_binding" "admin" {
   depends_on = [module.k3s.kubernetes_ready]
 
   metadata {
-    name = "bootstrap"
+    name = "admin"
   }
 
   subject {
     kind      = "ServiceAccount"
-    name      = "bootstrap"
+    name      = "admin"
     namespace = "default"
   }
 
   role_ref {
     api_group = "rbac.authorization.k8s.io"
     kind      = "ClusterRole"
-    name      = "admin"
+    name      = "cluster-admin"
   }
 }
 
 data "kubernetes_secret" "sa_credentials" {
   metadata {
-    name      = kubernetes_service_account.bootstrap.default_secret_name
+    name      = kubernetes_service_account.admin.default_secret_name
     namespace = "default"
   }
 }

k3s_cluster_v2/output.tf

@@ -2,8 +2,17 @@ output "summary" {
   value = module.k3s.summary
 }
 
-output "bootstrap_sa" {
-  description = "Bootstrap ServiceAccount. Can be used by Terraform to provision this cluster."
-  value       = data.kubernetes_secret.sa_credentials.data
-  sensitive   = true
+output "kubernetes" {
+  description = "Authentication credentials of Kubernetes (full administrator)."
+  value = {
+    token                  = data.kubernetes_secret.sa_credentials.data.token
+    cluster_ca_certificate = module.k3s.kubernetes.cluster_ca_certificate
+    api_endpoint           = "https://${var.domain}:6443"
+  }
+  sensitive = true
+}
+
+output "kubernetes_ready" {
+  description = "Dependency endpoint to synchronize k3s installation and provisioning."
+  value       = module.k3s.kubernetes_ready
 }