d4ccff518e
Adds Traefik Helm release (kube-system) with ACME HTTP-01 challenge configured for Let's Encrypt, replacing the k3s-disabled bundled Traefik. Migrates all hostnames from *.homelab.local to *.gugagr.xyz and upgrades all ingresses to HTTPS with certresolver=letsencrypt annotations. Adds var.domain (default homelab.local) to Terraform so the domain is a single config point for monitoring and Gitea ingresses. Gateway reads DOMAIN env var at runtime — falls back to homelab.local so local k3d dev continues to work without changes. Co-authored-by: Gonçalo Rodrigues <guga@Goncalos-MacBook-Pro.local> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
18 lines
582 B
HCL
18 lines
582 B
HCL
variable "enable_gitea" {
|
|
description = "Deploy Gitea and the act runner. Set to false to skip (e.g. on a dev laptop without a dedicated server)."
|
|
type = bool
|
|
default = false
|
|
}
|
|
|
|
variable "enable_monitoring" {
|
|
description = "Deploy Prometheus, Grafana, Loki, Jaeger, and Fluent Bit. Set to false on small VMs to save ~1.5 GB RAM."
|
|
type = bool
|
|
default = true
|
|
}
|
|
|
|
variable "domain" {
|
|
description = "Base domain for all ingress hostnames (e.g. gugagr.xyz). Subdomains are created per service."
|
|
type = string
|
|
default = "homelab.local"
|
|
}
|