Обновить terraform/main.tf

terraform/main.tf

@@ -1,101 +1,97 @@
----
+terraform {
-# 1. Валидация и добавление хоста
+  required_providers {
-- name: Validate input and add host dynamically
+    vsphere = {
-  hosts: localhost
+      source  = "hashicorp/vsphere"
-  gather_facts: no
+      version = "~> 2.4"
-  tasks:
+    }
-    - name: Check if vm_ip is provided
+  }
-      fail:
+}
-        msg: "ERROR: VM IP address is required!"
-      when: vm_ip is not defined or vm_ip == ""
 
-    - name: Check if ansible_user is provided
+# --- Креды vCenter (передаются скрыто через Environment) ---
-      fail:
+variable "vsphere_user" {}
-        msg: "ERROR: ansible_user is required!"
+variable "vsphere_password" {}
-      when: ansible_user is not defined or ansible_user == ""
+variable "vsphere_server" {}
 
-    - name: Display target information
+# --- Переменные, которые будут запрашиваться через Survey ---
-      debug:
+variable "vm_ip" {}
-        msg: |
+variable "vm_gateway" {}
-          ========================================
+variable "vm_cpu" {}
-          Target Configuration:
+variable "vm_ram" {}
-          - IP Address: {{ vm_ip }}
+variable "vm_disk_size" {}
-          - SSH User: {{ ansible_user }}
+variable "vsphere_datacenter" {}
-          ========================================
+variable "vsphere_datastore" {}
+variable "vsphere_pool" {}
+variable "vsphere_network" {}
+variable "vsphere_template" { default = "debian13-template" }
 
-    - name: Add new VM to inventory with authentication
+# --- Настройка провайдера ---
-      add_host:
+provider "vsphere" {
-        name: "{{ vm_ip }}"
+  user           = var.vsphere_user
-        groups: npm_servers
+  password       = var.vsphere_password
-        ansible_user: "{{ ansible_user }}"
+  vsphere_server = var.vsphere_server
-        ansible_ssh_common_args: '-o StrictHostKeyChecking=no'
+  allow_unverified_ssl = true
-        # Добавляем аутентификацию - выберите ОДИН из вариантов ниже:
+}
 
-        # Вариант 1: Использовать пароль
+# --- Поиск ресурсов в vCenter ---
-        ansible_ssh_pass: "{{ ansible_password | default('') }}"
+data "vsphere_datacenter" "dc" {
-        ansible_become_pass: "{{ ansible_password | default('') }}"
+  name = var.vsphere_datacenter
+}
 
-        # Вариант 2: Использовать SSH ключ (раскомментируйте и закомментируйте вариант 1)
+data "vsphere_datastore" "datastore" {
-        # ansible_ssh_private_key_file: "{{ ssh_key_path | default('~/.ssh/id_rsa') }}"
+  name          = var.vsphere_datastore
+  datacenter_id = data.vsphere_datacenter.dc.id
+}
 
-# 2. Основная настройка NPM
+data "vsphere_resource_pool" "pool" {
-- name: Setup Minimal Linux with Docker and Nginx Proxy Manager
+  name          = var.vsphere_pool
-  hosts: npm_servers
+  datacenter_id = data.vsphere_datacenter.dc.id
-  become: yes
+}
-  gather_facts: yes
-  tasks:
-    - name: Update apt cache and install prerequisites
-      apt:
-        name: ['apt-transport-https', 'ca-certificates', 'curl', 'gnupg', 'lsb-release']
-        state: present
-        update_cache: yes
 
-    - name: Add Docker GPG apt Key
+data "vsphere_network" "network" {
-      apt_key:
+  name          = var.vsphere_network
-        url: https://download.docker.com/linux/debian/gpg
+  datacenter_id = data.vsphere_datacenter.dc.id
-        state: present
+}
 
-    - name: Add Docker Repository
+data "vsphere_virtual_machine" "template" {
-      apt_repository:
+  name          = var.vsphere_template
-        repo: "deb [arch=amd64] https://download.docker.com/linux/debian {{ ansible_distribution_release }} stable"
+  datacenter_id = data.vsphere_datacenter.dc.id
-        state: present
+}
 
-    - name: Install Docker and Docker Compose Plugin
+# --- Создание ВМ ---
-      apt:
+resource "vsphere_virtual_machine" "npm_vm" {
-        name: ['docker-ce', 'docker-ce-cli', 'containerd.io', 'docker-compose-plugin']
+  name             = "npm-${replace(var.vm_ip, ".", "-")}" # Имя в vCenter будет, например: npm-192-168-1-50
-        state: present
+  resource_pool_id = data.vsphere_resource_pool.pool.id
-        update_cache: yes
+  datastore_id     = data.vsphere_datastore.datastore.id
 
-    - name: Ensure Docker service is running and enabled
+  num_cpus = var.vm_cpu
-      systemd:
+  memory   = var.vm_ram
-        name: docker
+  guest_id = data.vsphere_virtual_machine.template.guest_id
-        state: started
-        enabled: yes
 
-    - name: Create directory for Nginx Proxy Manager
+  network_interface {
-      file:
+    network_id   = data.vsphere_network.network.id
-        path: /opt/npm
+    adapter_type = data.vsphere_virtual_machine.template.network_interface_types[0]
-        state: directory
+  }
-        mode: '0755'
 
-    - name: Create docker-compose.yml for NPM
+  disk {
-      copy:
+    label            = "disk0"
-        dest: /opt/npm/docker-compose.yml
+    size             = var.vm_disk_size
-        content: |
+    thin_provisioned = true
-          version: '3.8'
+  }
-          services:
-            app:
-              image: 'jc21/nginx-proxy-manager:latest'
-              restart: unless-stopped
-              ports:
-                - '80:80'
-                - '81:81'
-                - '443:443'
-              volumes:
-                - ./data:/data
-                - ./letsencrypt:/etc/letsencrypt
 
-    - name: Run Nginx Proxy Manager via Docker Compose
+  clone {
-      community.docker.docker_compose_v2:
+    template_uuid = data.vsphere_virtual_machine.template.id
-        project_src: /opt/npm
+
-        state: present
+    customize {
+      linux_options {
+        host_name = "npm-server"
+        domain    = "local"
+      }
+      network_interface {
+        ipv4_address = var.vm_ip
+        ipv4_netmask = 23 # При необходимости маску тоже можно вынести в Survey
+      }
+      ipv4_gateway = var.vm_gateway
+      dns_server_list = ["192.168.1.1", "1.1.1.1"]
+    }
+  }
+}