This commit is contained in:
parent
557350425e
commit
5481119a1e
SSH key fingerprint:
SHA256:MNtTsLbihYaWF8j1fkOHfkKNlnN1JQfxEU/rBU8nCGw
16 changed files with 13358 additions and 13276 deletions
|
|
@ -1,15 +1,15 @@
|
|||
TF_VAR_tailscale_apikey=ENC[AES256_GCM,data:Eiu+4hpEWai54KqCDNt4gNs2/IvbSVjKoDzI+nC84UE29xXxzL7L9cJ4/pBDDTRCWP7fjuaQCvSfct86+bo=,iv:bE90zwubErwe+J5CbRMUMvEM4NLYGgzVn2xy46Biz30=,tag:pIuTHRqCa/vQHDhX4LvdEQ==,type:str]
|
||||
TF_VAR_oidc_username=ENC[AES256_GCM,data:kWoueBiFqi+W6fWxceXxysbRnI5TKw0dwbQeGrDXPRo/bgSp,iv:N97lndfMfSoKEoTtUgxdTvPH64D2+Z8teOsD42HFALY=,tag:F3K7Pjp9Tg+bgG6eTbByGg==,type:str]
|
||||
TF_VAR_oidc_password=ENC[AES256_GCM,data:/dx/EsrTQRg8kOEcne6hVpOwN80xJu/mGWoQYp25/9h4O3uKXsUDIiT38tEh6ZNkhmvPMb2oMsPQ6cI15v0=,iv:f8rIaXBX03RRcMvHXEJ4sgwBqNxSr2r9NUjJUh6PT0E=,tag:WEmbI2874qEKQNyG4vpbZA==,type:str]
|
||||
TF_VAR_oidc_issuer_url=ENC[AES256_GCM,data:5xE13sbc0mLG26hcFd607YF+6Urx6bbyVz0891hELmGcvJ2ssCj7VQDot+ks9n7RIg==,iv:t68qZ5aGP1hxu64vQ1HtgNqI0jsPfpyvJsKUw6HQ7WM=,tag:HYJuftCHOphCoK6KgtWH2g==,type:str]
|
||||
TF_VAR_oidc_client_id=ENC[AES256_GCM,data:Kd0AJ8ygDp7soxsUx6FM7qXRkksGiLUsKSgSPPDWxCmN4l89JcDPNleo,iv:sx/NRc/Jj8qPEUB1bFOIQTJiJGdi2reWBCcuXf+hwx0=,tag:j+nbQtSoq//HvK5DbPxixg==,type:str]
|
||||
TF_VAR_digitalocean_token=ENC[AES256_GCM,data:/7I6rDuQBB9wach6Rz8EDLMfzKD5asSMFs5Yhh1JYstwIRLtV7Ci/XPpqzzde8c+X1zceRYx7rv++PXid9GPhIsudcMv7wWtww==,iv:lngbGjfORS1KSjEK9XngmO+JVeIyHww3HnIN3vMNi3w=,tag:y2b5NqEIDXDpKDU9UPzcAQ==,type:str]
|
||||
TF_VAR_dnsimple_token=ENC[AES256_GCM,data:SuC7BzherI/qyKVg6vl7rHkhYkhSbY7SAVQncgGgW9islcrRO1SESrmhxRhp,iv:FSfCe8++L90ZJyBLSoNoFL7daGme5z0yeEB7wb7LA7I=,tag:rDBQBDXkNr8zx6FwCMPrNw==,type:str]
|
||||
TF_VAR_proxmox_token=ENC[AES256_GCM,data:toWq6tXsJys8NB5NAkoxEDyPtcl80HNhP/j9MSjSqRaRgrLfWXgdo/w2tvxrBHAyv7I7YBbpqDrQx5baoA==,iv:EK4NVFbCOoyX6F/LXPahQjbQQ/xQpNU0K37LjMD/JdI=,tag:WmiTa/u/djMsAAGZmmEqfQ==,type:str]
|
||||
TF_VAR_authentik_token=ENC[AES256_GCM,data:vp3Jfh28UsG+tC189IZKRPJnGmQmEzgVVYU5+9st/oOJPwXhx2xjsnWLedhxsVcSMpEideNi4sMmums+ZuY=,iv:jBaaXLXxKE1dw5So8S1m28qDQ6mTwYZ0HBYzTRktObE=,tag:Vby1xd9GQzaIN5JKtowuoQ==,type:str]
|
||||
sops_age__list_0__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAzbzlwVm9yOUZTS2VXMnZz\nTTVMNjdNWlV2NmRlSWdqMEdyVXRFZWxjc21vCjk4cUo2U3o5S1JLVFdYb3BhTFZ1\nMGRZVldIdWMvU3RxQU11KzhWcTZ0V00KLS0tIHA3eThiV3F3K2tPVVFwOTlnLzc3\nRForYlNvU0NQVVBlSUJsNTA1QUhxRUkKqKbKgn2DrCB8zgm6LS4yYhWmBWWeuvPK\nDnoIwiAGxyRxSYmOzZ4OYqgt2Ut/2lOi4EivaS9GS8DdO+vJOBF8iQ==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
TF_VAR_tailscale_apikey=ENC[AES256_GCM,data:vGD4TTWRI3DTHKGrDZ7caCB7pDwzrDib/Y+GYFMIEGt3c4PuQaNpLqfIombJvvDTk8A0Wc6HtVz8mzKNHm8=,iv:M5h3s0TuNDKBaAYZ3d/Ff4+dCHirP/GMZX4NkQyzIt8=,tag:LtokX79W6SKaZusx/ClkIw==,type:str]
|
||||
TF_VAR_oidc_username=ENC[AES256_GCM,data:3f4vUxTZ4+34GpJyaT3ktqajHr9vVB8W/PFK27r7rP0bpXPs,iv:HPGonXXsgFzTK/XY/ORC6Nw+um0tNvFwghTbteOs41o=,tag:M0yxpk6n4vx92xtQIv3i9A==,type:str]
|
||||
TF_VAR_oidc_password=ENC[AES256_GCM,data:brND11Sxa8uK9tlMfSWytYeZ4Y3eO2QDGQ0Cu/toHE2b66zNwZEBR5IvZrlWtjkuQfDiWjajMjYSNcW6zP8=,iv:GdhuDI+05H23I0UKS5StY2V9CBWRwPaT1GsqsLZbIlk=,tag:eWS4ZDMzMpl4xcRpbuhAzQ==,type:str]
|
||||
TF_VAR_oidc_issuer_url=ENC[AES256_GCM,data:jujlu91XuI/LhVj/u0eaWHKurUu8CzCqR4G3YCxKIGCmKwafJ7TkUuqIQ2ceEqC60g==,iv:/qoJXI4FHNFvJtwiJxw3GD63cFp3V4bXMl0eUuGi7/4=,tag:WLwBrN908Ji89cwr2DtD5Q==,type:str]
|
||||
TF_VAR_oidc_client_id=ENC[AES256_GCM,data:24YpuazLQ/mCjvmV8vVoU3RQkIbMfwZKKZ93gqtgpc7cZoNtSYzjl4VC,iv:L1kw2loslUXc4KoQZzZvg5uP+mihRiQ2U8FNr4DL17c=,tag:ImkrNzAdk6rZTOXlHLVQug==,type:str]
|
||||
TF_VAR_digitalocean_token=ENC[AES256_GCM,data:hr5SUNbuorHRkC/j1rorxJ0fjVAiHsFtUDImoFSAxT0iyfzF4KFVuMY7AxjO4wbeQgXLFzzF0JNJvagXGGVDAdpwGN1oGb/fgA==,iv:t1h48svbg074oBO8Az+Gevd2jfwIvevyvLCDAZrW3eY=,tag:NA2Tg63Y0XciJMw/JM+ybw==,type:str]
|
||||
TF_VAR_dnsimple_token=ENC[AES256_GCM,data:hK5rojr1IaoM67497d5A+0k+yZX2GNB/3xjpc8GdY0IQXpGFxdy8K3rVcR5w,iv:IC7WYcXyqX3Bc7veVmVe8Ox0GLGleUGGs+HCYWqsGIk=,tag:YaiH8dLmoJRskAA9MtVQRw==,type:str]
|
||||
TF_VAR_proxmox_token=ENC[AES256_GCM,data:GgqRf5Q5WUsMfm6j4WLBVIOrXDn1FICGFkcAkOEQiJwxfU/WvDOw7otJu+/V9/ergkDlkmk1AbIsKnLcvQ==,iv:CpfMgPl5qaVFdawfld7cOcw4JIvE4TrMQisr0hksCo0=,tag:iEKwAdhN5Slu9UQ85c7SEA==,type:str]
|
||||
TF_VAR_authentik_token=ENC[AES256_GCM,data:L3USkiDziZFEGPfAqTaHgn5vtScIg1FHkknCpwDSle4U8ttFrFFFytzE79CtpH3pMRF3FNLHTxnzxMYNChg=,iv:y55nor1SPMFzHmVIsFRsTbZmNsI6urm0pDJLqjAce+Q=,tag:+RCdcree7OCRl+GApVCzCg==,type:str]
|
||||
sops_age__list_0__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBNdnlnZjB6Y042MWtzZGgw\ncmZzN2RqbHlqbWlHbG5OU0tERHdpUldEMlh3CmFydHVtRDk3SlMweTl0L3VKZlh2\nNEhhZ1oySkY4M1c4c1NHc214T2JVVmcKLS0tIHRYYm1RU016MENXTVpvWWFsYU5l\nQzczVmdtdXRONHVXMGR6UFpLTHNIT2sKdMAQJOWLpkfAptjR9/X6U1ZviwIx1p3n\nB8uqqZ79raaIDDVeWD72ewpGwr+r3WAnVUR8rlX4qitFMs7dGghDKw==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
sops_age__list_0__map_recipient=age1cl3d4wtrrqrgldmrzpu53q2mk60r7hrhrymsrwss8s57z4mdv9fst4a55h
|
||||
sops_lastmodified=2025-01-03T18:27:18Z
|
||||
sops_mac=ENC[AES256_GCM,data:d/cEcDgHLBRz9FhDnScbHYrKIBrqsKyofCtKaQpTazlCy9R7lCM+/FLSU5abKry2DfKLRj8ig2VUmSpKuepb13QToZxgHRAah+QuW0TyEBEmjhh3+vQYLKQcAg9FVbGz/mT3CYrXq/ix53UGrJliaXHmGUPFpQ9MIiLeAgs/Cwk=,iv:1zDlg/g+w66+kqbnBt2M+LXtW4zTbKBGT4VWlsjDcq8=,tag:fPPNu858rXxFwYsYTFAmWw==,type:str]
|
||||
sops_lastmodified=2025-01-03T20:59:20Z
|
||||
sops_mac=ENC[AES256_GCM,data:sm112nUxn/1fHHX9l6ehaCtZZuE3SgXboAN/tVWn1J+0WaHnwLxD/JkeBRYEI+0HquTiZLVl65dbxJuc7LZoNYkTgU7vdXx7mnbq1C9IuxG5MVBeGnNINs5QhD4H0B6Fh8zAiLC5BmBz7EspCDcaz3P2oxL7e0I0xVnXaKSM51c=,iv:AoW3qidAMbWHmjZ8WYA3rxHaMUpZnomN9fkeZM2p2co=,tag:aoXxyU+Xm8Qr9GSAV+QbKg==,type:str]
|
||||
sops_unencrypted_suffix=_unencrypted
|
||||
sops_version=3.9.2
|
||||
|
|
|
|||
|
|
@ -5,6 +5,8 @@ TF_VAR_oidc_password=""
|
|||
TF_VAR_oidc_issuer_url=""
|
||||
TF_VAR_oidc_client_id=""
|
||||
|
||||
TF_VAR_digitalocean_token=""
|
||||
|
||||
TF_VAR_proxmox_token=""
|
||||
|
||||
TF_VAR_dnsimple_token=""
|
||||
|
||||
TF_VAR_authentik_token=""
|
||||
File diff suppressed because it is too large
Load diff
|
|
@ -24,27 +24,26 @@ provider "registry.opentofu.org/bpg/proxmox" {
|
|||
]
|
||||
}
|
||||
|
||||
provider "registry.opentofu.org/digitalocean/digitalocean" {
|
||||
version = "2.46.1"
|
||||
constraints = "~> 2.0"
|
||||
provider "registry.opentofu.org/dnsimple/dnsimple" {
|
||||
version = "1.8.0"
|
||||
constraints = "1.8.0"
|
||||
hashes = [
|
||||
"h1:R4hRmY/txPFZWzBhc8NRa40rymtrxhuFfb6TlGjNVPw=",
|
||||
"zh:3526081f8a54f40cc15deedc451e1fd6e816af1d64910e5db5c4feb344efb2aa",
|
||||
"zh:448140c8a9cbc3c0f98cafc77eeefb67216f8a508ba2d7519a95a1f35b985f14",
|
||||
"zh:4a751404e28d81fd3665b7d3771e3e56ffa577f8da5568da6c81d486bf8debe1",
|
||||
"zh:5106ed89005f49e7125ab6939a78a05c36db4a55e0d8ac0c77c0a8df8f36e054",
|
||||
"zh:53f455e0ab52a2f99d42ca3e8154153be387ae375d616f61fea9aca94529a03f",
|
||||
"zh:7360d2c1aa2840de001803f0d553898fc0278b6c86cd32bf74118a336dc810d7",
|
||||
"zh:83a7a62c60ccac1cd88827c679175ab7197941820bacb0c1dd109519ac8389d4",
|
||||
"zh:9771d84362d27e11e16002841ab5375f8f66984de84cc975a2d0650c42b7f81f",
|
||||
"zh:a7271363d571aab0056886b00fdf336cc8d5ab780c56ce2abd4a409f3a77b25b",
|
||||
"zh:b2067cdac25b2f21d5b13f381a1178a7a4cb164e24d248c22216738ae84d0a67",
|
||||
"zh:b3189cc0989e858f8473f18a57f0f69cd99916ec5e55eba5031159f8fe6f7f56",
|
||||
"zh:c0324136a3fbff814d82660b21225fd45bb7d04350cf669cc8651e9ae4fb467f",
|
||||
"zh:c6f4be572b3d008cb67e31f5588ff2d1a3807e2e4dc880bfec08e217d2fa09df",
|
||||
"zh:ddeee2f45a510ecb0ef0cfe5981e7f4f8286baab171b13ac87c46f269ced2dab",
|
||||
"zh:f13d58ec144f19d6520df799c9915cec4b911dd7cb347732645504818b2b9f20",
|
||||
"zh:f984d88e4fccf533adf0b73f32c23aca503596b6872fde5f08dcb76134130175",
|
||||
"h1:Nwu+3tVJnNmSJQoctRSWAamUX3AiTCZ5mOMtAUPtg7Q=",
|
||||
"zh:0852fd9523268b30fb637a03a0cb6d6a5878cbbf7e0e4219615c9ba073fbdf17",
|
||||
"zh:0ac43193082dd467abad4937b0abb97ea349205726fc450cb3a94dc0db6e9a49",
|
||||
"zh:10e4aad54c2d6cbd9328a1661d72a978357743eda7099a3f120a497119be4ff1",
|
||||
"zh:211d481935dec36903928c51f5f4f15d98313f6d50649ea064bc20a4d6541678",
|
||||
"zh:2705b5ebac4219449f9126cc19fa982cf0644e5df60d3d5254131d2e2d676afd",
|
||||
"zh:27f0df80af6652e96f85a0856daa571af495d2119ab126199d6d5ab53f6eb887",
|
||||
"zh:27fbb2fb69291a660d8e99ba960f01051b7fc28658f7932772ce7e80a42bd6e9",
|
||||
"zh:3ecf20ead1f044f08ae9e411c9341d47319eb6af5d6543b58f2f6932c6b288b0",
|
||||
"zh:635055f0af3eb27d30801aeead51d8b960c386f369a378fad7146350ec6b4d68",
|
||||
"zh:7ca26f64221a9c6634a02296e30a87e3fffed1144ac57e0ae9a86a448f42d4ca",
|
||||
"zh:895e0732da00942b2eb13c78673a9c9268e87e92a225999cddf2d13b823f3295",
|
||||
"zh:b3806e5b687faf97ad8cb2a23e105729059693ae07a229fecef52da5279d7bd1",
|
||||
"zh:c3c284a54aab3ddea2dba140af4a707ce077c9c2d9d34556902afdb25fe6ca8e",
|
||||
"zh:d2539f2cc5960a55a53eaaa90248abfb3167275e34af7e93735ec4571eb879eb",
|
||||
"zh:f809ab383cca0a5f83072981c64208cbd7fa67e986a86ee02dd2c82333221e32",
|
||||
]
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
{
|
||||
"version": "ENC[AES256_GCM,data:NA==,iv:f66nIqp7Z8tnps23f/om8zi6jlKCpNggpbohwwHiU7w=,tag:+WyeT9SfG9kkadSid8rcGA==,type:float]",
|
||||
"terraform_version": "ENC[AES256_GCM,data:MJUB9PU=,iv:1R6u8mrJclqeAyyCyN5yD6WV6VweiSLgUMUCDxMOjl8=,tag:hnEW2I2gybfDHOKirewiTg==,type:str]",
|
||||
"serial": "ENC[AES256_GCM,data:vQ==,iv:mqETpICeoSwxu4WIEtfPSnXmY8CgwdZsum+EU3Fe6FY=,tag:EPj4yYLbYsqziCjU0Iz6dQ==,type:float]",
|
||||
"lineage": "ENC[AES256_GCM,data:020v6I5nAWlsCnFv0rZSCljbqnvL9a3D7254wd5sXZ8dKhgD,iv:fVepSMDxee082dwejqtmHN/6Sr8B6lOMeY7vS+WGCXE=,tag:wLb0EgggQBJsYeOzgCD7kg==,type:str]",
|
||||
"version": "ENC[AES256_GCM,data:CA==,iv:93MNKLJO4OYP19jlsFQj2AVWEOabstKC8vo3I9Q2i6Q=,tag:Xs/2AmYg7tkxQv1Wnb6AwQ==,type:float]",
|
||||
"terraform_version": "ENC[AES256_GCM,data:D+zQp14=,iv:FwLKbksviuCqGXzghjNb28UBWTokmF0KjRjpu6svi4M=,tag:TL/r3ES9DltK88vr2okgaQ==,type:str]",
|
||||
"serial": "ENC[AES256_GCM,data:lg==,iv:V8SsViRHFRJkEoOj2Kf3MMtDBKZ4pN3JdVXKbFSWBkM=,tag:GLQkOQJ67/w5mAE9HSMxOQ==,type:float]",
|
||||
"lineage": "ENC[AES256_GCM,data:SvyLpjy3hzS9ZmSdZJg7CeGYTrA2cy5obND18DFBFbtjJK4j,iv:OGIwhaT576E9HLxbQSUjC8YhEEla261jW/VaWT+6Pn8=,tag:f7GZie6alqG3dYFP3w4LwQ==,type:str]",
|
||||
"outputs": {},
|
||||
"resources": [],
|
||||
"check_results": null,
|
||||
|
|
@ -14,11 +14,11 @@
|
|||
"age": [
|
||||
{
|
||||
"recipient": "age1cl3d4wtrrqrgldmrzpu53q2mk60r7hrhrymsrwss8s57z4mdv9fst4a55h",
|
||||
"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBydnp5MlR2c3FwTFRaQ0hK\nVzBOdlQ1RkFsdW8rQnk3bldjK2I2U1cxRmkwCjVqYjkvWDE2RW02TkpDWUEwbVZS\naFFzSURFQU1uRzBYa2owS0pYT3VRWGsKLS0tIDRpOU5Na1BCalFKeGFsYmNaTjM5\nbkxNS2ZLYXQyTUI0dmdTTFZ0NHNqQmcK9zb8FrgxwUDk3X39dqy6v5HM6AuG8kpe\nWRhxWgkFin/SbI0H7ADvg9CuxhFpshqJCZ+DOEJrH+YzGt85qs38RQ==\n-----END AGE ENCRYPTED FILE-----\n"
|
||||
"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBBdlpkaWRZekFabmpXbDNk\ndUxQOFhWakNCUlp0clYveXpYeWF5ZWJxUUE0Cld3dUxMN2JabHlaUkhzdTFrZWtV\ncE14Yk03dVpZWXo4WldFNU5jeWwxZzAKLS0tIDJsZk8wZDdvT2VSMDBqKzZaa1Zn\nT0d0NTdJRzNTcTFjNm5aelhnajEvb2MKhjL1D88m1kDt8UNcuUhOymp04K2D3wYC\nD8dGjxViR2PL+UYQDvkLQnAPsEdmv3tC4Ekbj1G7efJy+PUvMg0bJQ==\n-----END AGE ENCRYPTED FILE-----\n"
|
||||
}
|
||||
],
|
||||
"lastmodified": "2025-01-02T16:18:34Z",
|
||||
"mac": "ENC[AES256_GCM,data:IkiP+vZ5rD0DcMRByqxe5Rb3CGDxGOJ68ABnWm5cv2z8DkDrL+MDOZjeSDsD9pQYPUJc4D6/cfeAFgWhL0SUwLdpwR/OD9jsgY4NUqujxFMsl4ohTTMfHDrB0uPN19WzBmqY2zxoVcwIkN5qHkDX6Y57X0gGkAvfLAhkdJR5MvE=,iv:SgziuLLdNLERHHYOR6q4qVyRxLfwffe9hEseA1nPJJY=,tag:UOTFA0jMsSlEC3O7DBHTgg==,type:str]",
|
||||
"lastmodified": "2025-01-03T20:59:25Z",
|
||||
"mac": "ENC[AES256_GCM,data:l3iUxO585M7EvlSuEsD8PIRT22Qx480uZibyPzDnLSvT6AIHCxU0EaeL7gHd7jMTJXPrj4yTTFQKTEecQctJcUmTlJD+R+WUZgLDVNI2ql6ciB8e13LlBMt46aF1BpBDPHBlaFBsUvXWrZmv41vx7qsT+gXzj9cqEfuGnjqZdco=,iv:8nF4tibPS4X7v2xqTmmAVp1yWnaVvt1mSCZczPmA6fM=,tag:2tQf/Ct+c6IkYxqJGRGoYg==,type:str]",
|
||||
"pgp": null,
|
||||
"unencrypted_suffix": "_unencrypted",
|
||||
"version": "3.9.2"
|
||||
|
|
|
|||
|
|
@ -6,7 +6,7 @@ resource "helm_release" "external-dns-privileged" {
|
|||
namespace = kubernetes_namespace.tjo-cloud.metadata[0].name
|
||||
|
||||
values = [<<-EOF
|
||||
provider: digitalocean
|
||||
provider: dnsimple
|
||||
env:
|
||||
- name: DNSIMPLE_OAUTH
|
||||
valueFrom:
|
||||
|
|
|
|||
|
|
@ -16,13 +16,17 @@ resource "kubernetes_manifest" "tjo-cloud-issuer" {
|
|||
solvers = [
|
||||
{
|
||||
dns01 = {
|
||||
digitalocean = {
|
||||
webhook = {
|
||||
solverName = "dnsimple"
|
||||
groupName = "acme.dnsimple.com"
|
||||
config = {
|
||||
tokenSecretRef = {
|
||||
name = kubernetes_secret.digitalocean-token.metadata[0].name
|
||||
name = kubernetes_secret.dnsimple.metadata[0].name
|
||||
key = "token"
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
selector : {
|
||||
dnsZones : [
|
||||
"tjo.cloud"
|
||||
|
|
|
|||
|
|
@ -12,6 +12,5 @@ resource "kubernetes_secret" "dnsimple" {
|
|||
data = {
|
||||
token = var.dnsimple_token
|
||||
account_id = var.dnsimple_account_id
|
||||
zones = var.dnsimple_zones
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -2,10 +2,6 @@ terraform {
|
|||
required_version = ">= 1.0"
|
||||
|
||||
required_providers {
|
||||
digitalocean = {
|
||||
source = "digitalocean/digitalocean"
|
||||
version = "~> 2.0"
|
||||
}
|
||||
random = {
|
||||
source = "hashicorp/random"
|
||||
version = "3.6.2"
|
||||
|
|
|
|||
|
|
@ -19,6 +19,25 @@ resource "helm_release" "cert-manager" {
|
|||
]
|
||||
}
|
||||
|
||||
resource "helm_release" "cert-manager-dnsimple" {
|
||||
name = "cert-manager-webhook-dnsimple"
|
||||
chart = "cert-manager-webhook-dnsimple"
|
||||
repository = "https://puzzle.github.io/cert-manager-webhook-dnsimple"
|
||||
version = "v0.1.6"
|
||||
namespace = "kube-system"
|
||||
atomic = true
|
||||
cleanup_on_fail = true
|
||||
|
||||
values = [<<-EOF
|
||||
dnsimple:
|
||||
token: "not-used"
|
||||
certManager:
|
||||
namespace: "kube-system"
|
||||
serviceAccountName: "cert-manager"
|
||||
EOF
|
||||
]
|
||||
}
|
||||
|
||||
resource "helm_release" "envoy" {
|
||||
name = "envoy"
|
||||
chart = "gateway-helm"
|
||||
|
|
|
|||
|
|
@ -339,20 +339,20 @@ resource "local_file" "talosconfig" {
|
|||
filename = "${path.root}/admin.talosconfig"
|
||||
}
|
||||
|
||||
resource "digitalocean_record" "api-internal-ipv4" {
|
||||
resource "dnsimple_zone_record" "api-internal-ipv4" {
|
||||
for_each = { for k, v in local.nodes_with_address : k => v if v.type == "controlplane" }
|
||||
|
||||
domain = var.cluster.api.internal.domain
|
||||
zone_name = var.cluster.api.internal.domain
|
||||
type = "A"
|
||||
name = var.cluster.api.internal.subdomain
|
||||
value = each.value.ipv4
|
||||
ttl = 30
|
||||
}
|
||||
|
||||
resource "digitalocean_record" "api-internal-ipv6" {
|
||||
resource "dnsimple_zone_record" "api-internal-ipv6" {
|
||||
for_each = { for k, v in local.nodes_with_address : k => v if v.type == "controlplane" }
|
||||
|
||||
domain = var.cluster.api.internal.domain
|
||||
zone_name = var.cluster.api.internal.domain
|
||||
type = "AAAA"
|
||||
name = var.cluster.api.internal.subdomain
|
||||
value = each.value.ipv6
|
||||
|
|
|
|||
|
|
@ -14,9 +14,9 @@ terraform {
|
|||
source = "hashicorp/local"
|
||||
version = "1.4.0"
|
||||
}
|
||||
digitalocean = {
|
||||
source = "digitalocean/digitalocean"
|
||||
version = "~> 2.0"
|
||||
dnsimple = {
|
||||
source = "dnsimple/dnsimple"
|
||||
version = "1.8.0"
|
||||
}
|
||||
random = {
|
||||
source = "hashicorp/random"
|
||||
|
|
|
|||
|
|
@ -12,9 +12,9 @@ terraform {
|
|||
source = "hashicorp/local"
|
||||
version = "1.4.0"
|
||||
}
|
||||
digitalocean = {
|
||||
source = "digitalocean/digitalocean"
|
||||
version = "~> 2.0"
|
||||
dnsimple = {
|
||||
source = "dnsimple/dnsimple"
|
||||
version = "1.8.0"
|
||||
}
|
||||
random = {
|
||||
source = "hashicorp/random"
|
||||
|
|
@ -68,8 +68,9 @@ provider "proxmox" {
|
|||
}
|
||||
}
|
||||
|
||||
provider "digitalocean" {
|
||||
token = var.digitalocean_token
|
||||
provider "dnsimple" {
|
||||
token = var.dnsimple_token
|
||||
account = "155200"
|
||||
}
|
||||
|
||||
provider "helm" {
|
||||
|
|
|
|||
File diff suppressed because one or more lines are too long
|
|
@ -12,7 +12,7 @@ variable "oidc_issuer_url" {
|
|||
type = string
|
||||
}
|
||||
|
||||
variable "digitalocean_token" {
|
||||
variable "dnsimple_token" {
|
||||
type = string
|
||||
sensitive = true
|
||||
}
|
||||
|
|
|
|||
File diff suppressed because it is too large
Load diff
Loading…
Reference in a new issue