afcdcc6338
... that is then promptly enabled on nevsky. Change-Id: Ie51037cec810bb7f81099a67ebd2581dcf710bd5 Reviewed-on: https://cl.tvl.fyi/c/depot/+/13093 Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org>
119 lines
2.2 KiB
HCL
119 lines
2.2 KiB
HCL
# Configure TVL resources hosted with GleSYS.
|
|
#
|
|
# Most importantly:
|
|
# - all of our DNS
|
|
# - object storage (e.g. backups)
|
|
|
|
terraform {
|
|
required_providers {
|
|
glesys = {
|
|
source = "depot/glesys"
|
|
}
|
|
}
|
|
|
|
backend "s3" {
|
|
endpoints = {
|
|
s3 = "https://objects.dc-sto1.glesys.net"
|
|
}
|
|
bucket = "tvl-state"
|
|
key = "terraform/tvl-glesys"
|
|
region = "glesys"
|
|
|
|
skip_credentials_validation = true
|
|
skip_region_validation = true
|
|
skip_metadata_api_check = true
|
|
skip_requesting_account_id = true
|
|
skip_s3_checksum = true
|
|
}
|
|
}
|
|
|
|
provider "glesys" {
|
|
userid = "cl26117" # generated by GleSYS
|
|
}
|
|
|
|
resource "glesys_objectstorage_instance" "tvl-backups" {
|
|
description = "tvl-backups"
|
|
datacenter = "dc-sto1"
|
|
}
|
|
|
|
resource "glesys_objectstorage_instance" "tvl-state" {
|
|
description = "tvl-state"
|
|
datacenter = "dc-sto1"
|
|
}
|
|
|
|
resource "glesys_objectstorage_credential" "terraform-state" {
|
|
instanceid = glesys_objectstorage_instance.tvl-state.id
|
|
description = "key for terraform state"
|
|
}
|
|
|
|
resource "glesys_objectstorage_credential" "litestream" {
|
|
instanceid = glesys_objectstorage_instance.tvl-state.id
|
|
description = "key for litestream"
|
|
}
|
|
|
|
variable "whitby_ipv4" {
|
|
type = string
|
|
default = "49.12.129.211"
|
|
}
|
|
|
|
variable "whitby_ipv6" {
|
|
type = string
|
|
default = "2a01:4f8:242:5b21:0:feed:edef:beef"
|
|
}
|
|
|
|
variable "nevsky_ipv4" {
|
|
type = string
|
|
default = "188.225.81.75"
|
|
}
|
|
|
|
variable "nevsky_ipv6" {
|
|
type = string
|
|
default = "2a03:6f00:2:514b:0:feed:edef:beef"
|
|
}
|
|
|
|
variable "bugry_ipv4" {
|
|
type = string
|
|
default = "91.199.149.239"
|
|
}
|
|
|
|
variable "bugry_ipv6" {
|
|
type = string
|
|
default = "2a03:6f00:2:514b:5bc7:95ef:0:2"
|
|
}
|
|
|
|
variable "sanduny_ipv4" {
|
|
type = string
|
|
default = "85.119.82.231"
|
|
}
|
|
|
|
variable "sanduny_ipv6" {
|
|
type = string
|
|
default = "2001:ba8:1f1:f109::feed:edef:beef"
|
|
}
|
|
|
|
locals {
|
|
# Hostnames of all public services on whitby
|
|
whitby_services = [
|
|
"deploys",
|
|
]
|
|
|
|
# Hostnames of all public services on nevsky
|
|
nevsky_services = [
|
|
"auth",
|
|
"b",
|
|
"cl",
|
|
"code",
|
|
"cs",
|
|
"grep",
|
|
"status",
|
|
]
|
|
|
|
# Hostnames of all public services on bugry
|
|
bugry_services = [
|
|
"at",
|
|
"atward",
|
|
"signup",
|
|
"static",
|
|
"todo",
|
|
]
|
|
}
|