Merge pull request 'feat: add mail::gateway nodes' (#34) from benvin/mta_services into master

Reviewed-on: #34
2025-10-19 19:52:47 +11:00 · 2025-10-19 19:52:47 +11:00 · cc8c585dbd
commit cc8c585dbd
parent ffbb91891e c80f3a53a0
6 changed files with 183 additions and 0 deletions
--- a/config/instances/ausyd1nxvm2121/config.yaml
+++ b/config/instances/ausyd1nxvm2121/config.yaml
@ -0,0 +1,7 @@
+description: Postfix MTA
+cobbler_mgmt_classes:
+  - roles::infra::mail::gateway
+profiles:
+  - disk20
+  - net_dmz1_eth0
+  - 2core4096
--- a/config/instances/ausyd1nxvm2121/terragrunt.hcl
+++ b/config/instances/ausyd1nxvm2121/terragrunt.hcl
@ -0,0 +1,54 @@
+locals {
+  node_name     = "prodnxsr0009"
+  config_common     = yamldecode(file("${get_terragrunt_dir()}/../config_common.yaml"))
+  config_specific   = yamldecode(file("${get_terragrunt_dir()}/config.yaml"))
+  config            = merge(local.config_common, local.config_specific)
+  instance_name     = basename(get_terragrunt_dir())
+}
+
+inputs = merge(
+  {
+    name = local.instance_name
+  },
+  local.config
+)
+
+include "root" {
+  path   = find_in_parent_folders("root.hcl")
+}
+
+include "instances" {
+  path   = find_in_parent_folders("instances.hcl")
+  expose = true
+  merge_strategy = "deep"
+}
+
+dependencies {
+  paths = ["${get_repo_root()}/config/nodes/${local.node_name}"]
+}
+
+
+generate "incus" {
+  path      = "incus.tf"
+  if_exists = "overwrite_terragrunt"
+  contents  = <<-EOF
+    provider "incus" {
+      generate_client_certificates = false
+      accept_remote_certificate    = true
+      config_dir = "${get_env("INCUS_CONFIG_DIR")}"
+
+      remote {
+        name    = "${basename(get_terragrunt_dir())}"
+        scheme  = "https"
+        address = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_addr}"
+        port    = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_port}"
+        token   = "${get_env("INCUS_TOKEN_${upper(local.node_name)}")}"
+        default = true
+      }
+    }
+  EOF
+}
+terraform {
+  source = "${get_repo_root()}/modules/instance"
+}
+
--- a/config/instances/ausyd1nxvm2122/config.yaml
+++ b/config/instances/ausyd1nxvm2122/config.yaml
@ -0,0 +1,7 @@
+description: Postfix MTA
+cobbler_mgmt_classes:
+  - roles::infra::mail::gateway
+profiles:
+  - disk20
+  - net_dmz1_eth0
+  - 2core4096
--- a/config/instances/ausyd1nxvm2122/terragrunt.hcl
+++ b/config/instances/ausyd1nxvm2122/terragrunt.hcl
@ -0,0 +1,54 @@
+locals {
+  node_name     = "prodnxsr0010"
+  config_common     = yamldecode(file("${get_terragrunt_dir()}/../config_common.yaml"))
+  config_specific   = yamldecode(file("${get_terragrunt_dir()}/config.yaml"))
+  config            = merge(local.config_common, local.config_specific)
+  instance_name     = basename(get_terragrunt_dir())
+}
+
+inputs = merge(
+  {
+    name = local.instance_name
+  },
+  local.config
+)
+
+include "root" {
+  path   = find_in_parent_folders("root.hcl")
+}
+
+include "instances" {
+  path   = find_in_parent_folders("instances.hcl")
+  expose = true
+  merge_strategy = "deep"
+}
+
+dependencies {
+  paths = ["${get_repo_root()}/config/nodes/${local.node_name}"]
+}
+
+
+generate "incus" {
+  path      = "incus.tf"
+  if_exists = "overwrite_terragrunt"
+  contents  = <<-EOF
+    provider "incus" {
+      generate_client_certificates = false
+      accept_remote_certificate    = true
+      config_dir = "${get_env("INCUS_CONFIG_DIR")}"
+
+      remote {
+        name    = "${basename(get_terragrunt_dir())}"
+        scheme  = "https"
+        address = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_addr}"
+        port    = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_port}"
+        token   = "${get_env("INCUS_TOKEN_${upper(local.node_name)}")}"
+        default = true
+      }
+    }
+  EOF
+}
+terraform {
+  source = "${get_repo_root()}/modules/instance"
+}
+
--- a/config/instances/ausyd1nxvm2123/config.yaml
+++ b/config/instances/ausyd1nxvm2123/config.yaml
@ -0,0 +1,7 @@
+description: Postfix MTA
+cobbler_mgmt_classes:
+  - roles::infra::mail::gateway
+profiles:
+  - disk20
+  - net_dmz1_eth0
+  - 2core4096
--- a/config/instances/ausyd1nxvm2123/terragrunt.hcl
+++ b/config/instances/ausyd1nxvm2123/terragrunt.hcl
@ -0,0 +1,54 @@
+locals {
+  node_name     = "prodnxsr0011"
+  config_common     = yamldecode(file("${get_terragrunt_dir()}/../config_common.yaml"))
+  config_specific   = yamldecode(file("${get_terragrunt_dir()}/config.yaml"))
+  config            = merge(local.config_common, local.config_specific)
+  instance_name     = basename(get_terragrunt_dir())
+}
+
+inputs = merge(
+  {
+    name = local.instance_name
+  },
+  local.config
+)
+
+include "root" {
+  path   = find_in_parent_folders("root.hcl")
+}
+
+include "instances" {
+  path   = find_in_parent_folders("instances.hcl")
+  expose = true
+  merge_strategy = "deep"
+}
+
+dependencies {
+  paths = ["${get_repo_root()}/config/nodes/${local.node_name}"]
+}
+
+
+generate "incus" {
+  path      = "incus.tf"
+  if_exists = "overwrite_terragrunt"
+  contents  = <<-EOF
+    provider "incus" {
+      generate_client_certificates = false
+      accept_remote_certificate    = true
+      config_dir = "${get_env("INCUS_CONFIG_DIR")}"
+
+      remote {
+        name    = "${basename(get_terragrunt_dir())}"
+        scheme  = "https"
+        address = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_addr}"
+        port    = "${yamldecode(file("${get_repo_root()}/config/nodes/${local.node_name}/config.yaml")).node_port}"
+        token   = "${get_env("INCUS_TOKEN_${upper(local.node_name)}")}"
+        default = true
+      }
+    }
+  EOF
+}
+terraform {
+  source = "${get_repo_root()}/modules/instance"
+}
+