Use my standardised settings

2024-11-22 11:56:12 +01:00 · 2024-11-22 11:56:12 +01:00 · a046e9c47c
commit a046e9c47c
parent 4dcee59e1a
84 changed files with 137 additions and 22 deletions
--- a/docker/network/inputs.tf
+++ b/docker/network/inputs.tf
--- a/docker/network/network.tf
+++ b/docker/network/network.tf
--- a/docker/network/outputs.tf
+++ b/docker/network/outputs.tf
--- a/docker-apt-caching-proxy/terraform.tf
+++ b/docker-apt-caching-proxy/terraform.tf
--- a/docker/service/inputs.tf
+++ b/docker/service/inputs.tf
--- a/docker/service/outputs.tf
+++ b/docker/service/outputs.tf
--- a/docker/service/service.tf
+++ b/docker/service/service.tf
--- a/docker/service/terraform.tf
+++ b/docker/service/terraform.tf
--- a/dockerd-socket-proxy/inputs.tf
+++ b/dockerd-socket-proxy/inputs.tf
--- a/dockerd-socket-proxy/socket-proxy.tf
+++ b/dockerd-socket-proxy/socket-proxy.tf
@ -1,10 +1,10 @@
 module "network" {
-  source     = "../docker-network"
+  source     = "../network"
  name       = "docker-socket-proxy"
  stack_name = var.stack_name
 }
 module "service" {
-  source       = "../docker-service"
+  source       = "../service"
  image        = "${var.docker_socket_proxy_image}:${var.docker_socket_proxy_version}"
  command      = ["/docker-entrypoint.sh", "sockd-username"]
  stack_name   = var.stack_name
--- a/dockerd-socket-proxy/terraform.tf
+++ b/dockerd-socket-proxy/terraform.tf
--- a/products/apt-caching-proxy/apt-caching-proxy.tf
+++ b/products/apt-caching-proxy/apt-caching-proxy.tf
@ -1,5 +1,5 @@
 module "ap" {
-  source                = "../docker-service"
+  source                = "../../docker/service"
  image                 = "sameersbn/apt-cacher-ng"
  stack_name            = "apt-caching-proxy"
  service_name          = "apt-caching-proxy"
--- a/products/apt-caching-proxy/inputs.tf
+++ b/products/apt-caching-proxy/inputs.tf
--- a/products/apt-caching-proxy/terraform.tf
+++ b/products/apt-caching-proxy/terraform.tf
--- a/products/archiveteam/warrior/inputs.tf
+++ b/products/archiveteam/warrior/inputs.tf
--- a/products/archiveteam/warrior/locals.tf
+++ b/products/archiveteam/warrior/locals.tf
--- a/products/archiveteam/warrior/outputs.tf
+++ b/products/archiveteam/warrior/outputs.tf
--- a/docker-forgejo-actions-runner/terraform.tf
+++ b/docker-forgejo-actions-runner/terraform.tf
--- a/products/archiveteam/warrior/warrior.tf
+++ b/products/archiveteam/warrior/warrior.tf
@ -1,5 +1,5 @@
 module "warrior" {
-  source                = "../docker-service"
+  source                = "../../../docker/service"
  image                 = "atdr.meo.ws/archiveteam/warrior-dockerfile"
  stack_name            = "archiveteam"
  service_name          = var.service_name
--- a/products/forgejo/actions-runner/forgejo-runner.tf
+++ b/products/forgejo/actions-runner/forgejo-runner.tf
@ -1,5 +1,5 @@
 module "forgejo_actions_runner" {
-  source                = "../docker-service"
+  source                = "../../../docker/service"
  service_name          = var.service_name
  stack_name            = var.stack_name
  placement_constraints = var.placement_constraints
--- a/products/forgejo/actions-runner/inputs.tf
+++ b/products/forgejo/actions-runner/inputs.tf
--- a/products/forgejo/actions-runner/terraform.tf
+++ b/products/forgejo/actions-runner/terraform.tf
--- a/products/gitea/actions-runner/gitea-runner.tf
+++ b/products/gitea/actions-runner/gitea-runner.tf
@ -1,5 +1,5 @@
 module "gitea_actions_runner" {
-  source                = "../docker-service"
+  source                = "./../../../docker/service"
  service_name          = var.service_name
  stack_name            = var.stack_name
  placement_constraints = var.placement_constraints
--- a/products/gitea/actions-runner/inputs.tf
+++ b/products/gitea/actions-runner/inputs.tf
--- a/products/gitea/actions-runner/terraform.tf
+++ b/products/gitea/actions-runner/terraform.tf
--- a/products/github/actions-runner/gha-runner.tf
+++ b/products/github/actions-runner/gha-runner.tf
@ -1,5 +1,5 @@
 module "github_actions_runner" {
-  source                = "../docker-service"
+  source                = "../../../docker/service"
  service_name          = var.service_name
  stack_name            = var.stack_name
  placement_constraints = var.placement_constraints
--- a/products/github/actions-runner/inputs.tf
+++ b/products/github/actions-runner/inputs.tf
--- a/products/github/actions-runner/terraform.tf
+++ b/products/github/actions-runner/terraform.tf
--- a/products/nginx/.gitignore
+++ b/products/nginx/.gitignore
--- a/products/nginx/default.conf
+++ b/products/nginx/default.conf
--- a/products/nginx/default_page.tf
+++ b/products/nginx/default_page.tf
--- a/products/nginx/inputs.tf
+++ b/products/nginx/inputs.tf
--- a/products/nginx/nginx.tf
+++ b/products/nginx/nginx.tf
--- a/products/nginx/site-available/basic-auth.tf
+++ b/products/nginx/site-available/basic-auth.tf
--- a/products/nginx/site-available/cert.tf
+++ b/products/nginx/site-available/cert.tf
--- a/products/nginx/site-available/config.tf
+++ b/products/nginx/site-available/config.tf
--- a/products/nginx/site-available/inputs.tf
+++ b/products/nginx/site-available/inputs.tf
--- a/products/nginx/site-available/nginx_template.conf
+++ b/products/nginx/site-available/nginx_template.conf
--- a/products/nginx/site-available/outputs.tf
+++ b/products/nginx/site-available/outputs.tf
--- a/products/nginx/site-available/terraform.tf
+++ b/products/nginx/site-available/terraform.tf
--- a/products/nginx/terraform.tf
+++ b/products/nginx/terraform.tf
--- a/products/pgbackweb/inputs.tf
+++ b/products/pgbackweb/inputs.tf
--- a/products/pgbackweb/nginx.tf
+++ b/products/pgbackweb/nginx.tf
@ -13,7 +13,7 @@ variable "acme_certificate" {

 module "nginx_config" {
  count         = var.nginx_hostname != null ? 1 : 0
-  source        = "../nginx/nginx-site-available"
+  source        = "../nginx/site-available"
  service_name  = module.pgbackweb.service_name
  hostname      = var.nginx_hostname
  upstream_host = "${module.pgbackweb.service_name}:8085"
--- a/products/pgbackweb/pgbackweb.tf
+++ b/products/pgbackweb/pgbackweb.tf
@ -1,5 +1,5 @@
 module "network" {
-  source     = "../docker-network"
+  source     = "../../docker/network"
  stack_name = var.stack_name
 }
 resource "random_password" "encryption_key" {
@ -7,7 +7,7 @@ resource "random_password" "encryption_key" {
  special = false
 }
 module "pgbackweb" {
-  source = "../docker-service"
+  source = "../../docker/service"
  image  = "${var.pgbackweb_image}:${var.pgbackweb_version}"
  environment_variables = {
    PBW_ENCRYPTION_KEY       = nonsensitive(random_password.encryption_key.result)
@ -19,7 +19,7 @@ module "pgbackweb" {
  placement_constraints = var.placement_constraints
 }
 module "postgres" {
-  source                = "../docker-postgres"
+  source                = "../postgres"
  postgres_version      = "16"
  stack_name            = var.stack_name
  networks              = [module.network.network]
--- a/products/pgbackweb/terraform.tf
+++ b/products/pgbackweb/terraform.tf
--- a/docker-portainer/docker-portainer-edge-agent/agent.tf
+++ b/docker-portainer/docker-portainer-edge-agent/agent.tf
--- a/docker-portainer/docker-portainer-edge-agent/input.tf
+++ b/docker-portainer/docker-portainer-edge-agent/input.tf
--- a/docker-portainer/docker-portainer-edge-agent/terraform.tf
+++ b/docker-portainer/docker-portainer-edge-agent/terraform.tf
--- a/docker-portainer/docker-portainer-ui/inputs.tf
+++ b/docker-portainer/docker-portainer-ui/inputs.tf
--- a/docker-portainer/docker-portainer-ui/output.tf
+++ b/docker-portainer/docker-portainer-ui/output.tf
--- a/docker-portainer/docker-portainer-ui/terraform.tf
+++ b/docker-portainer/docker-portainer-ui/terraform.tf
--- a/docker-portainer/docker-portainer-ui/ui.tf
+++ b/docker-portainer/docker-portainer-ui/ui.tf
--- a/products/postgres/credentials.tf
+++ b/products/postgres/credentials.tf
--- a/products/postgres/inputs.tf
+++ b/products/postgres/inputs.tf
--- a/products/postgres/outputs.tf
+++ b/products/postgres/outputs.tf
--- a/products/postgres/postgres.tf
+++ b/products/postgres/postgres.tf
@ -1,5 +1,5 @@
 module "service" {
-  source       = "../docker-service"
+  source       = "../../docker/service"
  image        = "${var.postgres_image}:${var.postgres_version}"
  stack_name   = var.stack_name
  service_name = "postgres"
--- a/products/postgres/terraform.tf
+++ b/products/postgres/terraform.tf
--- a/products/quassel/inputs.tf
+++ b/products/quassel/inputs.tf
--- a/products/quassel/outputs.tf
+++ b/products/quassel/outputs.tf
--- a/products/quassel/quassel.tf
+++ b/products/quassel/quassel.tf
@ -1,9 +1,9 @@
 module "network" {
-  source     = "../docker-network"
+  source     = "../../docker/network"
  stack_name = var.stack_name
 }
 module "postgres" {
-  source                = "../docker-postgres"
+  source                = "../postgres"
  postgres_version      = "16"
  stack_name            = var.stack_name
  networks              = [module.network.network]
@ -13,7 +13,7 @@ module "postgres" {
  ports                 = [{ container = 5432, host = 65432 }]
 }
 module "service" {
-  source       = "../docker-service"
+  source       = "../../docker/service"
  image        = "${var.quassel_image}:${var.quassel_version}"
  stack_name   = var.stack_name
  service_name = "quassel"
--- a/products/quassel/terraform.tf
+++ b/products/quassel/terraform.tf
--- a/products/redis/credentials.tf
+++ b/products/redis/credentials.tf
--- a/products/redis/inputs.tf
+++ b/products/redis/inputs.tf
--- a/products/redis/outputs.tf
+++ b/products/redis/outputs.tf
--- a/products/redis/postgres.tf
+++ b/products/redis/postgres.tf
@ -1,5 +1,5 @@
 module "service" {
-  source       = "../docker-service"
+  source       = "../../docker/service"
  image        = "${var.redis_image}:${var.redis_version}"
  command      = ["redis-server", "--requirepass", local.auth, "--appendonly", "yes", "--save", 60, 1, "--loglevel", "warning"]
  stack_name   = var.stack_name
--- a/products/redis/terraform.tf
+++ b/products/redis/terraform.tf
--- a/products/statping/inputs.tf
+++ b/products/statping/inputs.tf
--- a/products/statping/nginx.tf
+++ b/products/statping/nginx.tf
@ -12,7 +12,7 @@ variable "acme_certificate" {
 }
 module "nginx_config" {
  count         = var.nginx_hostname != null ? 1 : 0
-  source        = "../nginx/nginx-site-available"
+  source        = "../nginx/site-available"
  service_name  = module.service.service_name
  hostname      = var.nginx_hostname
  upstream_host = "${module.service.service_name}:8080"
--- a/products/statping/outputs.tf
+++ b/products/statping/outputs.tf
--- a/products/statping/statping.tf
+++ b/products/statping/statping.tf
@ -1,9 +1,9 @@
 module "network" {
-  source     = "../docker-network"
+  source     = "../../docker/network"
  stack_name = var.stack_name
 }
 module "postgres" {
-  source                = "../docker-postgres"
+  source                = "../../products/postgres"
  postgres_version      = "16"
  stack_name            = var.stack_name
  networks              = [module.network.network]
@ -11,7 +11,7 @@ module "postgres" {
  ports                 = [{ container = 5432, host = 65200 }]
 }
 module "service" {
-  source       = "../docker-service"
+  source       = "../../docker/service"
  image        = "${var.statping_image}:${var.statping_version}"
  stack_name   = var.stack_name
  service_name = "statping"
--- a/products/statping/terraform.tf
+++ b/products/statping/terraform.tf
--- a/products/threeproxy/inputs.tf
+++ b/products/threeproxy/inputs.tf
--- a/products/threeproxy/outputs.tf
+++ b/products/threeproxy/outputs.tf
--- a/products/threeproxy/proxy.tf
+++ b/products/threeproxy/proxy.tf
@ -12,7 +12,7 @@ locals {
  http_endpoint  = "http://${local.username}:${local.password}@${var.endpoint}:${var.http_proxy_port}"
 }
 module "service" {
-  source       = "../docker-service"
+  source       = "../../docker/service"
  image        = "${var.threeproxy_image}:${var.threeproxy_version}"
  stack_name   = var.stack_name
  service_name = var.service_name
--- a/products/threeproxy/terraform.tf
+++ b/products/threeproxy/terraform.tf
--- a/products/unifi/magic-forward/input.tf
+++ b/products/unifi/magic-forward/input.tf
@ -0,0 +1,45 @@
+variable "enabled" {
+  default     = true
+  description = "Whether the port forward should be enabled"
+  type        = bool
+}
+variable "label" {
+  description = "The label of the port forward"
+  type        = string
+}
+variable "docker_service" {
+  description = "The Docker Service to forward to"
+  type = object({
+    name = string
+    endpoint_spec = list(object({
+      protocol       = optional(string)
+      target_port    = optional(number)
+      published_port = number
+    }))
+  })
+}
+variable "target" {
+  description = "The Target Host to forward traffic to"
+  type = object({
+    mac              = string
+    name             = string
+    fixed_ip         = string
+    local_dns_record = optional(string)
+    dev_id_override  = optional(string)
+  })
+}
+variable "protocol" {
+  default     = "tcp"
+  description = "The protocol to use for the port forward"
+  type        = string
+  validation {
+    condition     = var.protocol == "tcp" || var.protocol == "udp" || var.protocol == "any"
+    error_message = "Protocol must be either tcp or udp or any!"
+  }
+}
+
+variable "port" {
+  description = "Override the detected port to forward"
+  type        = number
+  default     = null
+}
--- a/products/unifi/magic-forward/magic_forward.tf
+++ b/products/unifi/magic-forward/magic_forward.tf
@ -0,0 +1,7 @@
+module "port_forward" {
+  source  = "../port-forward"
+  enabled = var.enabled
+  label   = var.label
+  port_to = var.port != null ? var.port : var.docker_service.endpoint_spec[0].ports[0].published_port
+  ip      = var.target.fixed_ip
+}
--- a/products/unifi/magic-forward/terraform.tf
+++ b/products/unifi/magic-forward/terraform.tf
@ -0,0 +1,3 @@
+terraform {
+  required_version = "~> 1.6"
+}
--- a/products/unifi/port-forward/input.tf
+++ b/products/unifi/port-forward/input.tf
@ -0,0 +1,43 @@
+variable "enabled" {
+  default     = true
+  description = "Whether the port forward should be enabled"
+  type        = bool
+}
+variable "label" {
+  description = "The label of the port forward"
+  type        = string
+}
+variable "ip" {
+  description = "The target IP address to forward to"
+  type        = string
+  validation {
+    condition     = can(cidrnetmask(var.ip))
+    error_message = "Must be a valid IPv4 CIDR block address."
+  }
+}
+variable "port" {
+  description = "The port to forward"
+  type        = number
+  default     = null
+}
+variable "port_from" {
+  description = "The port to forward from"
+  type        = number
+  default     = null
+}
+variable "port_to" {
+  description = "The port to forward to"
+  type        = number
+  default     = null
+}
+
+variable "protocol" {
+  default     = "tcp"
+  description = "The protocol to use for the port forward"
+  type        = string
+  validation {
+    condition     = var.protocol == "tcp" || var.protocol == "udp" || var.protocol == "any"
+    error_message = "Protocol must be either tcp or udp or any!"
+  }
+}
+
--- a/products/unifi/port-forward/port_forward.tf
+++ b/products/unifi/port-forward/port_forward.tf
@ -0,0 +1,8 @@
+resource "unifi_port_forward" "port_forward" {
+  count    = var.enabled ? 1 : 0
+  name     = var.label
+  dst_port = var.port_to != null ? var.port_to : var.port
+  fwd_port = var.port_from != null ? var.port_from : var.port
+  protocol = var.protocol
+  fwd_ip   = var.ip
+}
--- a/products/unifi/port-forward/terraform.tf
+++ b/products/unifi/port-forward/terraform.tf
@ -0,0 +1,9 @@
+terraform {
+  required_version = "~> 1.6"
+  required_providers {
+    unifi = {
+      source  = "paultyng/unifi"
+      version = "0.41.0"
+    }
+  }
+}
--- a/products/watchtower/inputs.tf
+++ b/products/watchtower/inputs.tf
--- a/products/watchtower/terraform.tf
+++ b/products/watchtower/terraform.tf
--- a/products/watchtower/watchtower.tf
+++ b/products/watchtower/watchtower.tf
@ -1,5 +1,5 @@
 module "watchtower" {
-  source                = "../docker-service"
+  source                = "../../docker/service"
  image                 = "containrrr/watchtower:latest"
  stack_name            = "watchtower"
  service_name          = "watchtower"