Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit cc9dba7

Browse files
lholotalholota
authored
feat: Prefixed SSH resources (#29)
1 parent daa4cfe commit cc9dba7

File tree

2 files changed

+22
-4
lines changed

2 files changed

+22
-4
lines changed

environments/vars.tfvars

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -92,6 +92,24 @@ cloudflare_apps = [
9292
allow_non_admins = true,
9393
allow_service_token = false
9494
},
95+
{
96+
subdomain = "pve1"
97+
display_name = "Proxmox VE (Node 1)"
98+
allow_non_admins = false,
99+
allow_service_token = true
100+
},
101+
{
102+
subdomain = "pve2"
103+
display_name = "Proxmox VE (Node 2)"
104+
allow_non_admins = false,
105+
allow_service_token = true
106+
},
107+
{
108+
subdomain = "pve3"
109+
display_name = "Proxmox VE (Node 3)"
110+
allow_non_admins = false,
111+
allow_service_token = true
112+
},
95113
{
96114
subdomain = "pve"
97115
display_name = "Proxmox VE"

terraform/cloudflare-ssh.tf

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,20 +1,20 @@
1-
resource "cloudflare_record" "ssh" {
1+
resource "cloudflare_record" "ssh_prefixed" {
22
for_each = { for each in var.cloudflare_ssh_hosts : each.hostname => each }
33

44
zone_id = sensitive(data.sops_file.secrets.data["cloudflare_zone_id"])
5-
name = "${each.key}.${var.cloudflare_apps_root_domain}"
5+
name = "ssh-${each.key}.${var.cloudflare_apps_root_domain}"
66
type = "CNAME"
77
value = cloudflare_tunnel.default.cname
88
ttl = 1
99
proxied = true
1010
}
1111

12-
resource "cloudflare_access_application" "ssh" {
12+
resource "cloudflare_access_application" "ssh_prefixed" {
1313
for_each = { for each in var.cloudflare_ssh_hosts : each.hostname => each }
1414

1515
account_id = sensitive(data.sops_file.secrets.data["cloudflare_account_id"])
1616
name = "SSH / ${each.key}.${var.cloudflare_apps_root_domain}"
17-
domain = "${each.key}.${var.cloudflare_apps_root_domain}"
17+
domain = "ssh-${each.key}.${var.cloudflare_apps_root_domain}"
1818
type = "self_hosted"
1919
session_duration = "24h"
2020
auto_redirect_to_identity = true

0 commit comments

Comments
 (0)