You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
63 lines
1.7 KiB
HCL
63 lines
1.7 KiB
HCL
terraform {
|
|
required_version = ">= 1.0"
|
|
|
|
required_providers {
|
|
coder = {
|
|
source = "coder/coder"
|
|
version = ">= 0.12"
|
|
}
|
|
}
|
|
}
|
|
|
|
# Add required variables for your modules and remove any unneeded variables
|
|
variable "agent_id" {
|
|
type = string
|
|
description = "The ID of a Coder agent."
|
|
}
|
|
|
|
variable "vault_addr" {
|
|
type = string
|
|
description = "The address of the Vault server."
|
|
}
|
|
|
|
variable "vault_auth_id" {
|
|
type = string
|
|
description = "The ID of the Vault auth method to use."
|
|
default = "vault"
|
|
}
|
|
|
|
variable "secrets" {
|
|
type = map(list)
|
|
description = "A map of secret lists to set as environment variables. Each secret list is a list of paths to secrets to set as environment variables."
|
|
default = {}
|
|
}
|
|
|
|
variable "vault_cli_version" {
|
|
type = string
|
|
description = "The version of Vault to install."
|
|
default = "latest"
|
|
# validate the version is in the format x.y.z or latest
|
|
validation {
|
|
condition = can(regex("^(latest|[0-9]+\\.[0-9]+\\.[0-9]+)$", var.vault_cli_version))
|
|
error_message = "Vault version must be in the format 0.0.0 or latest"
|
|
}
|
|
}
|
|
|
|
resource "coder_script" "vault" {
|
|
agent_id = var.agent_id
|
|
display_name = "vault"
|
|
icon = "/icon/vault.svg"
|
|
script = templatefile("${path.module}/run.sh", {
|
|
VAULT_ADDR : var.vault_addr,
|
|
VAULT_TOKEN : data.coder_git_auth.vault.access_token,
|
|
VERSION : var.vault_cli_version,
|
|
SECRETS : jsonencode(var.secrets),
|
|
})
|
|
run_on_start = true
|
|
}
|
|
|
|
# TODO replace with a "coder_external_auth" data source once https://github.com/coder/coder/issues/10122 is resolved
|
|
data "coder_git_auth" "vault" {
|
|
id = var.vault_auth_id
|
|
}
|