From d4ae65180b59229533ae890f5c7470647a73a653 Mon Sep 17 00:00:00 2001 From: Max Date: Wed, 31 Dec 2025 14:03:47 -0500 Subject: [PATCH] feat: removed lb, added managed cert --- terraform/ingress.tf | 21 --------------------- terraform/network.tf | 6 ++++++ terraform/providers.tf | 7 ------- terraform/variables.tf | 18 ------------------ 4 files changed, 6 insertions(+), 46 deletions(-) delete mode 100644 terraform/ingress.tf diff --git a/terraform/ingress.tf b/terraform/ingress.tf deleted file mode 100644 index 04f590d..0000000 --- a/terraform/ingress.tf +++ /dev/null @@ -1,21 +0,0 @@ -// Create load balancer for ingress. -resource "hcloud_load_balancer" "lb" { - name = "lb" - load_balancer_type = "lb11" - network_zone = "eu-central" -} - -# The Route53 DNS zone. -data "aws_route53_zone" "main" { - name = local.domain -} - -# Push all domain traffic through the reverse proxy. -resource "aws_route53_record" "domain" { - for_each = toset(["*.${local.domain}", "${local.domain}"]) - zone_id = data.aws_route53_zone.main.zone_id - name = each.value - type = "A" - ttl = "60" - records = [hcloud_load_balancer.lb.ipv4] -} diff --git a/terraform/network.tf b/terraform/network.tf index ed26083..ee3c56c 100644 --- a/terraform/network.tf +++ b/terraform/network.tf @@ -26,3 +26,9 @@ resource "hcloud_network_route" "gateway" { destination = "0.0.0.0/0" gateway = local.nat-private-ip } + +// A managed certificate for the domain, to be used by the load balancer. +resource "hcloud_managed_certificate" "managed_cert" { + name = "managed_cert" + domain_names = ["*.${local.domain}", "${local.domain}"] +} diff --git a/terraform/providers.tf b/terraform/providers.tf index 3a85e77..462c362 100644 --- a/terraform/providers.tf +++ b/terraform/providers.tf @@ -16,10 +16,3 @@ terraform { provider "hcloud" { token = var.hcloud_token } - -provider "aws" { - region = var.aws_region - access_key = var.aws_access_key - secret_key = var.aws_secret_key -} - diff --git a/terraform/variables.tf b/terraform/variables.tf index 80f564d..3941b78 100644 --- a/terraform/variables.tf +++ b/terraform/variables.tf @@ -22,21 +22,3 @@ variable "hcloud_token" { type = string sensitive = true } - -variable "aws_region" { - description = "The region of the AWS account." - type = string - sensitive = true -} - -variable "aws_access_key" { - description = "The access key of the account." - type = string - sensitive = true -} - -variable "aws_secret_key" { - description = "The secret key of the account." - type = string - sensitive = true -}