blob: a329bcfdfb3187d75c724fb5ce95c70516024822 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
|
variable "do_token" {
type = "string"
description = "DigitalOcean API token."
}
variable "tld" {
type = "string"
description = "Root Top-Level Domain. Subdomains will be derived from it."
}
variable "wallabag_tld_prefix" {
type = "string"
description = "DNS prefix used for the Wallabag installation. Does not contain a dot at the end."
}
variable "nextcloud_tld_prefix" {
type = "string"
description = "DNS prefix used for the Nextcloud installation. Does not contain a dot at the end."
}
provider "digitalocean" {
token = "${var.do_token}"
version = "~> 1.1"
}
resource "digitalocean_ssh_key" "client" {
name = "terraform-vps-client"
public_key = "${file("${path.module}/secrets/ssh/vps-box-client.pub")}"
}
resource "digitalocean_droplet" "vps" {
image = "ubuntu-18-04-x64"
name = "sovereignty"
region = "nyc3"
size = "s-1vcpu-1gb"
backups = true
ipv6 = true
monitoring = true
user_data = "${file("${path.module}/generated/user-data.sh")}"
ssh_keys = [
"${digitalocean_ssh_key.client.fingerprint}",
]
connection {
user = "root"
type = "ssh"
private_key = "${file("${path.module}/secrets/ssh/vps-box-client")}"
timeout = "2m"
}
provisioner "remote-exec" {
inline = ["echo 'SSH is up! Noop remote-exec is done.'"]
}
}
resource "digitalocean_volume" "vps_persistent_volume" {
region = "nyc3"
name = "vps-persistent-volume"
size = 10
initial_filesystem_type = "ext4"
description = "Persistent disk to store docker volumes contents across droplets being created and destroyed"
}
resource "digitalocean_volume_attachment" "foobar" {
volume_id = "${digitalocean_volume.vps_persistent_volume.id}"
droplet_id = "${digitalocean_droplet.vps.id}"
}
resource "digitalocean_floating_ip" "vps_public_ip" {
region = "${digitalocean_droplet.vps.region}"
}
resource "digitalocean_floating_ip_assignment" "vps_public_ip_assignment" {
ip_address = "${digitalocean_floating_ip.vps_public_ip.id}"
droplet_id = "${digitalocean_droplet.vps.id}"
}
output "public_floating_ip" {
value = "${digitalocean_floating_ip.vps_public_ip.ip_address}"
}
resource "digitalocean_domain" "vps_tld" {
name = "${var.tld}"
}
resource "digitalocean_record" "at_sign" {
domain = "${digitalocean_domain.vps_tld.name}"
type = "A"
name = "@"
value = "${digitalocean_floating_ip.vps_public_ip.ip_address}"
}
resource "digitalocean_record" "wallabag" {
domain = "${digitalocean_domain.vps_tld.name}"
type = "CNAME"
name = "${var.wallabag_tld_prefix}"
value = "${digitalocean_domain.vps_tld.name}."
}
resource "digitalocean_record" "nextcloud" {
domain = "${digitalocean_domain.vps_tld.name}"
type = "CNAME"
name = "${var.nextcloud_tld_prefix}"
value = "${digitalocean_domain.vps_tld.name}."
}
|
