1
0
Fork 0

Add working base record set

- Mail
- Spaces Bucket
- CDN
- Nameserver
This commit is contained in:
Shane Engelman 2023-01-30 19:19:08 -06:00
parent 66bf6fbaaa
commit 55df7fa5c2
Signed by: shane
GPG Key ID: D9DF703B83B9A9B5
2 changed files with 53 additions and 44 deletions

View File

@ -34,49 +34,58 @@ resource "digitalocean_spaces_bucket" "distrust_co" {
acl = "public-read" acl = "public-read"
} }
## Handle record for CDN redirect
resource "digitalocean_record" "cdn" {
domain = "distrust.co"
type = "CNAME"
name = "${digitalocean_cdn.distrust_co.origin}."
value = "distrust.co"
}
## Create a DigitalOcean managed Let's Encrypt Certificate
resource "digitalocean_certificate" "cert" {
name = "cdn-cert"
type = "lets_encrypt"
domains = ["static.distrust.co"]
}
# Add a CDN endpoint to the Spaces Bucket # Add a CDN endpoint to the Spaces Bucket
resource "digitalocean_cdn" "distrust_co" { resource "digitalocean_cdn" "distrust_co" {
origin = digitalocean_spaces_bucket.distrust_co.bucket_domain_name origin = digitalocean_spaces_bucket.distrust_co.bucket_domain_name
certificate_name = digitalocean_certificate.cert.name # certificate_name = digitalocean_certificate.cert.name
custom_domain = "static.distrust.co" # custom_domain = "static.distrust.co"
depends_on = [
digitalocean_spaces_bucket.distrust_co
]
} }
## Handle record for CDN redirect
resource "digitalocean_record" "cdn" {
domain = digitalocean_domain.default.name
type = "CNAME"
name = digitalocean_cdn.distrust_co.origin
value = "${digitalocean_domain.default.name}."
depends_on = [
digitalocean_cdn.distrust_co
]
}
# ## Create a DigitalOcean managed Let's Encrypt Certificate
# resource "digitalocean_certificate" "cert" {
# name = "cdn-cert"
# type = "lets_encrypt"
# domains = ["static.distrust.co"]
# }
# Output the endpoint for the CDN resource # Output the endpoint for the CDN resource
output "fqdn" { output "fqdn" {
value = digitalocean_cdn.distrust_co.endpoint value = digitalocean_cdn.distrust_co.endpoint
} }
# #
output "cdn_origin" { output "cdn_origin" {
value = digitalocean_cdn.distrust_co.origin value = digitalocean_cdn.distrust_co.origin
} }
# Handle record for distrust.co # # Handle record for distrust.co
resource "digitalocean_record" "distrust_co" { # resource "digitalocean_record" "distrust_co-cdn" {
domain = "distrust.co" # domain = digitalocean_domain.default.name
type = "CNAME" # type = "CNAME"
name = "@" # name = "@"
value = digitalocean_cdn.distrust_co.origin # value = "${digitalocean_cdn.distrust_co.origin}."
} # depends_on = [
# digitalocean_cdn.distrust_co
# ]
# }
resource "digitalocean_record" "CNAME-www" { resource "digitalocean_record" "CNAME-www" {
domain = digitalocean_domain.default.name domain = digitalocean_domain.default.name
type = "CNAME" type = "CNAME"
name = "www" name = "www-main"
value = "@" value = "@"
} }
@ -200,7 +209,7 @@ resource "digitalocean_record" "mail-discovery" {
resource "digitalocean_record" "mail-src-autodiscover" { resource "digitalocean_record" "mail-src-autodiscover" {
domain = digitalocean_domain.default.id domain = digitalocean_domain.default.id
type = "SRV" type = "SRV"
name = "_autodiscover" name = "_autodiscover._tcp"
port = 443 port = 443
priority = 0 priority = 0
weight = 1 weight = 1
@ -210,7 +219,7 @@ resource "digitalocean_record" "mail-src-autodiscover" {
resource "digitalocean_record" "mail-srv-submissions" { resource "digitalocean_record" "mail-srv-submissions" {
domain = digitalocean_domain.default.id domain = digitalocean_domain.default.id
type = "SRV" type = "SRV"
name = "_submissions" name = "_submissions._tcp"
port = 465 port = 465
priority = 0 priority = 0
weight = 1 weight = 1
@ -220,7 +229,7 @@ resource "digitalocean_record" "mail-srv-submissions" {
resource "digitalocean_record" "mail-srv-imaps" { resource "digitalocean_record" "mail-srv-imaps" {
domain = digitalocean_domain.default.id domain = digitalocean_domain.default.id
type = "SRV" type = "SRV"
name = "_imaps" name = "_imaps._tcp"
port = 993 port = 993
priority = 0 priority = 0
weight = 1 weight = 1
@ -230,7 +239,7 @@ resource "digitalocean_record" "mail-srv-imaps" {
resource "digitalocean_record" "mail-srv-pop3s" { resource "digitalocean_record" "mail-srv-pop3s" {
domain = digitalocean_domain.default.id domain = digitalocean_domain.default.id
type = "SRV" type = "SRV"
name = "_pop3s" name = "_pop3s._tcp"
port = 995 port = 995
priority = 0 priority = 0
weight = 1 weight = 1