jdormit-infra/mgmt/do-jeremydormitzer-com/terraform/main.tf

provider "digitalocean" {
  token             = var.do_token
  spaces_access_id  = var.spaces_access_id
  spaces_secret_key = var.spaces_secret_key
}

# This domain is registered via Google Domains, so the nameservers
# there need to point to DO's nameservers
resource "digitalocean_domain" "jeremydormitzer_com" {
  name = "jeremydormitzer.com"
}

resource "digitalocean_record" "top_level_a" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "A"
  name   = "@"
  value  = "104.198.14.52" # Netlify load balancer
  ttl    = 3600
}

resource "digitalocean_record" "www" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "CNAME"
  name   = "www"
  value  = "keen-varahamihira-4f3922.netlify.app."
  ttl    = 3600
}

resource "digitalocean_record" "keybase_verification" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "TXT"
  name   = "@"
  value  = "\"keybase-site-verification=pF7Kp3dUfmTQHrf54uJht5O0aiTZjy1bRgpT4NGX8fk\""
  ttl    = 3600
}

resource "digitalocean_record" "git_mailgun_cname" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "CNAME"
  name   = "mail.mg.git"
  value  = "mailgun.org."
  ttl    = 3600
}

resource "digitalocean_record" "git" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "A"
  name   = "git"
  value  = data.terraform_remote_state.nginx.outputs.nginx_ip_address
  ttl    = 3600
}

resource "digitalocean_record" "git_mxa" {
  domain   = digitalocean_domain.jeremydormitzer_com.name
  type     = "MX"
  name     = "mg.git"
  value    = "mxa.mailgun.org."
  priority = 10
  ttl      = 3600
}

resource "digitalocean_record" "git_mxb" {
  domain   = digitalocean_domain.jeremydormitzer_com.name
  type     = "MX"
  name     = "mg.git"
  value    = "mxb.mailgun.org."
  priority = 10
  ttl      = 3600
}

resource "digitalocean_record" "git_txt" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "TXT"
  name   = "mx._domainkey.mg.git"
  value  = "\"k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpGHgB9oj3UdxdGUp9389PihevWCs+YKdkXv+C9DRv7nXY+L1bGjgqooIXwW9Bte5QC9lFpCN81NzK95gDYkX9rgo+huaeSw2B4slGBBWIBet4Wk6OafcQ2LsT9/VFUYeFyKD8AF4hV44CC5ZSWYVC6TiYCrNhEscQo9OYBhKicwIDAQAB\""
  ttl    = 3600
}

resource "digitalocean_record" "syncthing" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "A"
  name   = "syncthing"
  value  = data.terraform_remote_state.nginx.outputs.nginx_ip_address
  ttl    = 3600
}

resource "digitalocean_record" "wallabag" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "A"
  name   = "wallabag"
  value  = data.terraform_remote_state.nginx.outputs.nginx_ip_address
  ttl    = 3600
}

resource "digitalocean_record" "freshrss" {
  domain = digitalocean_domain.jeremydormitzer_com.name
  type   = "A"
  name   = "rss"
  value  = data.terraform_remote_state.freshrss.outputs.ip_address
  ttl    = 3600
}
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`provider "digitalocean" {`
			`token = var.do_token`
			`spaces_access_id = var.spaces_access_id`
			`spaces_secret_key = var.spaces_secret_key`
			`}`

			`# This domain is registered via Google Domains, so the nameservers`
			`# there need to point to DO's nameservers`
			`resource "digitalocean_domain" "jeremydormitzer_com" {`
			`name = "jeremydormitzer.com"`
			`}`

			`resource "digitalocean_record" "top_level_a" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "A"`
			`name = "@"`
Point rss.jeremydormitzer.com to FreshRSS instance 2021-02-03 15:38:39 +00:00			`value = "104.198.14.52" # Netlify load balancer`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "www" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
Point jeremydormitzer.com at netlify 2020-12-10 19:59:38 +00:00			`type = "CNAME"`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`name = "www"`
Point jeremydormitzer.com at netlify 2020-12-10 19:59:38 +00:00			`value = "keen-varahamihira-4f3922.netlify.app."`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "keybase_verification" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "TXT"`
			`name = "@"`
			`value = "\"keybase-site-verification=pF7Kp3dUfmTQHrf54uJht5O0aiTZjy1bRgpT4NGX8fk\""`
			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "git_mailgun_cname" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "CNAME"`
			`name = "mail.mg.git"`
			`value = "mailgun.org."`
			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "git" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "A"`
			`name = "git"`
Squashed commit of the following: commit 8371367d54e5975d1ed3bd28ef56a4e8837fb3a5 Author: Jeremy Dormitzer <jeremy.dormitzer@gmail.com> Date: Tue Mar 8 11:56:39 2022 -0500 Ensure that nginx restarts after cert renewal commit f2ef1ba9f24abd795f176bc6790188616252a54b Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 21:16:44 2021 -0400 Put syncthing behind nginx commit 6c10b1bb97e386e24b9896b34a9a9ce8d8a3b42d Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 17:45:53 2021 -0400 Put wallabag behind nginx proxy commit dd29785d86eb1222fb79791b464f155acb643539 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 17:30:46 2021 -0400 Put gitea behind the nginx proxy commit 2d82c0ad5400dd16d63b7219aa8294ee622ddcaf Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:36:37 2021 -0400 Add terraform outputs and spin up nginx droplet commit 322449a194f51b6866ff9f6b56ab122610a5e108 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:29:59 2021 -0400 Finish packer build for nginx proxy commit aec886064a1bf78ff113e5564fefc716f5cf0ac1 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:28:06 2021 -0400 [WIP] Add actual server values to nginx conf commit 2c645d94c6e58d62b35f7433a82d43cd5c23cb15 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:06:02 2021 -0400 [WIP] Use terraform to generate nginx conf file commit 61ebc3d7af6da7093e5bd4fc85a89be64ecc3cf0 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:04:56 2021 -0400 Ignore all tmp directories commit e3feb6d3f715849c47752471b3f6778581128442 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Sun Oct 3 12:32:42 2021 -0400 [WIP] Begin adding packer config for centralized ssl termination 2022-03-08 16:57:29 +00:00			`value = data.terraform_remote_state.nginx.outputs.nginx_ip_address`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "git_mxa" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "MX"`
			`name = "mg.git"`
			`value = "mxa.mailgun.org."`
			`priority = 10`
			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "git_mxb" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "MX"`
			`name = "mg.git"`
			`value = "mxb.mailgun.org."`
			`priority = 10`
			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "git_txt" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "TXT"`
			`name = "mx._domainkey.mg.git"`
			`value = "\"k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpGHgB9oj3UdxdGUp9389PihevWCs+YKdkXv+C9DRv7nXY+L1bGjgqooIXwW9Bte5QC9lFpCN81NzK95gDYkX9rgo+huaeSw2B4slGBBWIBet4Wk6OafcQ2LsT9/VFUYeFyKD8AF4hV44CC5ZSWYVC6TiYCrNhEscQo9OYBhKicwIDAQAB\""`
			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "syncthing" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "A"`
			`name = "syncthing"`
Squashed commit of the following: commit 8371367d54e5975d1ed3bd28ef56a4e8837fb3a5 Author: Jeremy Dormitzer <jeremy.dormitzer@gmail.com> Date: Tue Mar 8 11:56:39 2022 -0500 Ensure that nginx restarts after cert renewal commit f2ef1ba9f24abd795f176bc6790188616252a54b Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 21:16:44 2021 -0400 Put syncthing behind nginx commit 6c10b1bb97e386e24b9896b34a9a9ce8d8a3b42d Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 17:45:53 2021 -0400 Put wallabag behind nginx proxy commit dd29785d86eb1222fb79791b464f155acb643539 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 17:30:46 2021 -0400 Put gitea behind the nginx proxy commit 2d82c0ad5400dd16d63b7219aa8294ee622ddcaf Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:36:37 2021 -0400 Add terraform outputs and spin up nginx droplet commit 322449a194f51b6866ff9f6b56ab122610a5e108 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:29:59 2021 -0400 Finish packer build for nginx proxy commit aec886064a1bf78ff113e5564fefc716f5cf0ac1 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:28:06 2021 -0400 [WIP] Add actual server values to nginx conf commit 2c645d94c6e58d62b35f7433a82d43cd5c23cb15 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:06:02 2021 -0400 [WIP] Use terraform to generate nginx conf file commit 61ebc3d7af6da7093e5bd4fc85a89be64ecc3cf0 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:04:56 2021 -0400 Ignore all tmp directories commit e3feb6d3f715849c47752471b3f6778581128442 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Sun Oct 3 12:32:42 2021 -0400 [WIP] Begin adding packer config for centralized ssl termination 2022-03-08 16:57:29 +00:00			`value = data.terraform_remote_state.nginx.outputs.nginx_ip_address`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`ttl = 3600`
			`}`

			`resource "digitalocean_record" "wallabag" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "A"`
			`name = "wallabag"`
Squashed commit of the following: commit 8371367d54e5975d1ed3bd28ef56a4e8837fb3a5 Author: Jeremy Dormitzer <jeremy.dormitzer@gmail.com> Date: Tue Mar 8 11:56:39 2022 -0500 Ensure that nginx restarts after cert renewal commit f2ef1ba9f24abd795f176bc6790188616252a54b Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 21:16:44 2021 -0400 Put syncthing behind nginx commit 6c10b1bb97e386e24b9896b34a9a9ce8d8a3b42d Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Tue Oct 5 17:45:53 2021 -0400 Put wallabag behind nginx proxy commit dd29785d86eb1222fb79791b464f155acb643539 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 17:30:46 2021 -0400 Put gitea behind the nginx proxy commit 2d82c0ad5400dd16d63b7219aa8294ee622ddcaf Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:36:37 2021 -0400 Add terraform outputs and spin up nginx droplet commit 322449a194f51b6866ff9f6b56ab122610a5e108 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 13:29:59 2021 -0400 Finish packer build for nginx proxy commit aec886064a1bf78ff113e5564fefc716f5cf0ac1 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:28:06 2021 -0400 [WIP] Add actual server values to nginx conf commit 2c645d94c6e58d62b35f7433a82d43cd5c23cb15 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:06:02 2021 -0400 [WIP] Use terraform to generate nginx conf file commit 61ebc3d7af6da7093e5bd4fc85a89be64ecc3cf0 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Mon Oct 4 09:04:56 2021 -0400 Ignore all tmp directories commit e3feb6d3f715849c47752471b3f6778581128442 Author: Jeremy Dormitzer <jeremydormitzer@lola.com> Date: Sun Oct 3 12:32:42 2021 -0400 [WIP] Begin adding packer config for centralized ssl termination 2022-03-08 16:57:29 +00:00			`value = data.terraform_remote_state.nginx.outputs.nginx_ip_address`
Add jeremydormitzer.com domain config 2020-12-03 19:35:33 +00:00			`ttl = 3600`
			`}`
Point rss.jeremydormitzer.com to FreshRSS instance 2021-02-03 15:38:39 +00:00
			`resource "digitalocean_record" "freshrss" {`
			`domain = digitalocean_domain.jeremydormitzer_com.name`
			`type = "A"`
			`name = "rss"`
			`value = data.terraform_remote_state.freshrss.outputs.ip_address`
			`ttl = 3600`
			`}`