feat: initial support for external resources

2025-03-10 04:47:09 +07:00 · 2021-12-08 09:24:09 +07:00 · 2021-12-08 09:24:09 +07:00 · 36f3bef932
commit 36f3bef932
parent cb57ddbb28
2 changed files with 55 additions and 0 deletions
--- a/external/backblaze.tf
+++ b/external/backblaze.tf
@ -0,0 +1,4 @@
+resource "b2_bucket" "backup" {
+  bucket_name = "homelab-backup"
+  bucket_type = "allPrivate"
+}
--- a/external/cloudflare.tf
+++ b/external/cloudflare.tf
@ -0,0 +1,51 @@
+locals {
+  internal_records = [
+    "*.knative",
+    "argocd",
+    "authentik",
+    "dex",
+    "grafana",
+    "home",
+    "jellyfin",
+    "paperless",
+    "seafile",
+    "syncthing",
+    "tekton",
+    "vault",
+  ]
+
+  tunnel_records = [
+    "git"
+  ]
+}
+
+resource "cloudflare_record" "internal_records" {
+  for_each = toset(local.internal_records)
+  zone_id = cloudflare_zone.khuedoan_com.id
+  type    = "A"
+  name    = each.key
+  # TODO use data to get ingress IP
+  value   = "192.168.1.150"
+  ttl     = 1 # Auto
+}
+
+resource "random_password" "homelab_tunnel" {
+  length  = 64
+  special = false
+}
+
+resource "cloudflare_argo_tunnel" "homelab" {
+  # TODO (optimize) Use variable for account_id
+  account_id = "xxx"
+  name       = "homelab"
+  secret     = base64encode(random_password.homelab_tunnel.result)
+}
+
+resource "cloudflare_record" "git" {
+  zone_id = cloudflare_zone.khuedoan_com.id
+  type    = "CNAME"
+  name    = "git"
+  value   = "${cloudflare_argo_tunnel.homelab.id}.cfargotunnel.com"
+  proxied = true
+  ttl     = 1 # Auto
+}