76 lines
3 KiB
Text
76 lines
3 KiB
Text
# =============================================================================
|
|
# DigitalOcean Terraform Configuration
|
|
# =============================================================================
|
|
# Copy this file to terraform.tfvars and fill in your values
|
|
# NEVER commit terraform.tfvars to version control!
|
|
#
|
|
# Set the DO token via environment variable:
|
|
# export TF_VAR_do_token="dop_v1_your_token_here"
|
|
# =============================================================================
|
|
|
|
# =============================================================================
|
|
# Project Configuration
|
|
# =============================================================================
|
|
|
|
project_name = "realms"
|
|
environment = "production"
|
|
region = "nyc3"
|
|
|
|
# =============================================================================
|
|
# VPC Configuration
|
|
# =============================================================================
|
|
|
|
vpc_ip_range = "10.10.0.0/16"
|
|
|
|
# =============================================================================
|
|
# SSH Configuration
|
|
# =============================================================================
|
|
|
|
# Add your admin SSH public key(s) here
|
|
# Generate with: ssh-keygen -t ed25519 -C "your_email@example.com"
|
|
admin_ssh_public_keys = {
|
|
# "admin-name" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINlczdk2KKjY2CyYV1Ql8enjRn8gpBBgSLmbbCUyG5Qs admin@doom.tube"
|
|
}
|
|
|
|
# SSH ports (non-standard for security)
|
|
jump_host_ssh_port = 49822 # Jump host public SSH
|
|
forgejo_ssh_port = 52913 # Forgejo system SSH (VPC only)
|
|
forgejo_git_ssh_port = 2222 # Forgejo Git SSH (public)
|
|
|
|
# =============================================================================
|
|
# Jump Host Configuration
|
|
# =============================================================================
|
|
|
|
jump_host_size = "s-1vcpu-512mb-10gb" # $4/mo
|
|
jump_host_image = "debian-12-x64"
|
|
|
|
# =============================================================================
|
|
# Forgejo Configuration
|
|
# =============================================================================
|
|
|
|
forgejo_droplet_size = "s-1vcpu-1gb-intel" # $7/mo - 1GB RAM, 1 Intel vCPU
|
|
forgejo_droplet_image = "debian-12-x64"
|
|
forgejo_volume_size = 50 # GB for repositories and LFS
|
|
forgejo_domain = "qbit.realms.pub"
|
|
|
|
# =============================================================================
|
|
# DNS Configuration (requires domain to be managed by DigitalOcean)
|
|
# =============================================================================
|
|
|
|
# Set to true to automatically create/update A record for Forgejo
|
|
manage_dns = true
|
|
|
|
# Base domain managed by DigitalOcean DNS
|
|
dns_zone = "realms.pub"
|
|
|
|
# =============================================================================
|
|
# Backup Configuration
|
|
# =============================================================================
|
|
|
|
enable_droplet_backups = true
|
|
|
|
# =============================================================================
|
|
# Additional Tags
|
|
# =============================================================================
|
|
|
|
tags = []
|