From 65f17aa432219be3d0e25ab35cdd5e1dab2b6b0f Mon Sep 17 00:00:00 2001 From: LordMathis Date: Sat, 22 Mar 2025 23:18:33 +0100 Subject: [PATCH] Update cloudflare terraform config --- provisioning/main.tf | 21 ++++++++++++--------- 1 file changed, 12 insertions(+), 9 deletions(-) diff --git a/provisioning/main.tf b/provisioning/main.tf index 04875f0..7d7ca0b 100644 --- a/provisioning/main.tf +++ b/provisioning/main.tf @@ -110,52 +110,55 @@ resource "hcloud_firewall" "cluster-firewall" { } data "cloudflare_zones" "domain" { - filter { - name = data.sops_file.secrets.data["domain_name"] - } + name = data.sops_file.secrets.data["domain_name"] } resource "cloudflare_dns_record" "cluster" { - zone_id = data.cloudflare_zones.domain.zones[0].id + zone_id = data.cloudflare_zones.domain.result[0].id name = "@" content = hcloud_server.cluster.ipv4_address type = "A" proxied = false + ttl = 3600 } resource "cloudflare_dns_record" "cluster_wildcard" { - zone_id = data.cloudflare_zones.domain.zones[0].id + zone_id = data.cloudflare_zones.domain.result[0].id name = "*" content = hcloud_server.cluster.ipv4_address type = "A" proxied = false + ttl = 3600 } resource "cloudflare_dns_record" "caa" { - zone_id = data.cloudflare_zones.domain.zones[0].id + zone_id = data.cloudflare_zones.domain.result[0].id name = "@" type = "CAA" - data { + data = { flags = "0" tag = "issue" value = "letsencrypt.org" } + ttl = 3600 } resource "cloudflare_dns_record" "cluster_ipv6_wildcard" { - zone_id = data.cloudflare_zones.domain.zones[0].id + zone_id = data.cloudflare_zones.domain.result[0].id name = "@" content = hcloud_server.cluster.ipv6_address type = "AAAA" proxied = false + ttl = 3600 } resource "cloudflare_dns_record" "cluster_ipv6" { - zone_id = data.cloudflare_zones.domain.zones[0].id + zone_id = data.cloudflare_zones.domain.result[0].id name = "*" content = hcloud_server.cluster.ipv6_address type = "AAAA" proxied = false + ttl = 3600 } output "server_ip" {