57 lines
1.3 KiB
HCL
57 lines
1.3 KiB
HCL
locals {
|
|
name = "365Zon"
|
|
}
|
|
|
|
resource "kubernetes_namespace" "tenant" {
|
|
metadata {
|
|
name = lower(local.name)
|
|
}
|
|
|
|
lifecycle {
|
|
ignore_changes = [metadata]
|
|
}
|
|
}
|
|
|
|
module "bootstrap-zitadel" {
|
|
source = "./zitadel"
|
|
|
|
namespace = kubernetes_namespace.tenant.metadata[0].name
|
|
org_id = var.org_id
|
|
user_id = var.user_id
|
|
name = local.name
|
|
}
|
|
|
|
// create uploads bucket in minio
|
|
|
|
// create minio secret
|
|
resource "kubernetes_secret" "storage" {
|
|
metadata {
|
|
name = "storage"
|
|
namespace = kubernetes_namespace.tenant.metadata[0].name
|
|
}
|
|
|
|
data = {
|
|
Storage__AccountName = var.minio_access_key
|
|
Storage__AccountKey = var.minio_secret_key
|
|
Storage__BlobUri = var.minio_service_uri
|
|
Storage__S3BucketName = "uploads"
|
|
}
|
|
}
|
|
|
|
resource "kubernetes_secret" "connection_strings" {
|
|
metadata {
|
|
name = "connection-strings"
|
|
namespace = kubernetes_namespace.tenant.metadata[0].name
|
|
}
|
|
|
|
data = {
|
|
ConnectionStrings__DocumentDb = var.mongodb_connection_string
|
|
ConnectionStrings__ServiceBus = var.rabbitmq_connection_string
|
|
}
|
|
}
|
|
|
|
// okay, so now we have the identity stuff in order, and we have secrets to use for that
|
|
// next, we need to set-up:
|
|
// - the wildcard tls (*.365zon.venus.fourlights.dev)
|
|
// - argocd for all relevant apps
|