Обновить terraform/main.tf

terraform/main.tf

@@ -1,97 +1,101 @@
-terraform {
+---
-  required_providers {
+# 1. Валидация и добавление хоста
-    vsphere = {
+- name: Validate input and add host dynamically
-      source  = "hashicorp/vsphere"
+  hosts: localhost
-      version = "~> 2.4"
+  gather_facts: no
-    }
+  tasks:
-  }
+    - name: Check if vm_ip is provided
-}
+      fail:
+        msg: "ERROR: VM IP address is required!"
+      when: vm_ip is not defined or vm_ip == ""
 
-# --- Креды vCenter (передаются скрыто через Environment) ---
+    - name: Check if ansible_user is provided
-variable "vsphere_user" {}
+      fail:
-variable "vsphere_password" {}
+        msg: "ERROR: ansible_user is required!"
-variable "vsphere_server" {}
+      when: ansible_user is not defined or ansible_user == ""
 
-# --- Переменные, которые будут запрашиваться через Survey ---
+    - name: Display target information
-variable "vm_ip" {}
+      debug:
-variable "vm_gateway" {}
+        msg: |
-variable "vm_cpu" {}
+          ========================================
-variable "vm_ram" {}
+          Target Configuration:
-variable "vm_disk_size" {}
+          - IP Address: {{ vm_ip }}
-variable "vsphere_datacenter" {}
+          - SSH User: {{ ansible_user }}
-variable "vsphere_datastore" {}
+          ========================================
-variable "vsphere_pool" {}
-variable "vsphere_network" {}
-variable "vsphere_template" { default = "debian13-template" }
 
-# --- Настройка провайдера ---
+    - name: Add new VM to inventory with authentication
-provider "vsphere" {
+      add_host:
-  user           = var.vsphere_user
+        name: "{{ vm_ip }}"
-  password       = var.vsphere_password
+        groups: npm_servers
-  vsphere_server = var.vsphere_server
+        ansible_user: "{{ ansible_user }}"
-  allow_unverified_ssl = true
+        ansible_ssh_common_args: '-o StrictHostKeyChecking=no'
-}
+        # Добавляем аутентификацию - выберите ОДИН из вариантов ниже:
 
-# --- Поиск ресурсов в vCenter ---
+        # Вариант 1: Использовать пароль
-data "vsphere_datacenter" "dc" {
+        ansible_ssh_pass: "{{ ansible_password | default('') }}"
-  name = var.vsphere_datacenter
+        ansible_become_pass: "{{ ansible_password | default('') }}"
-}
+        
+        # Вариант 2: Использовать SSH ключ (раскомментируйте и закомментируйте вариант 1)
+        # ansible_ssh_private_key_file: "{{ ssh_key_path | default('~/.ssh/id_rsa') }}"
 
-data "vsphere_datastore" "datastore" {
+# 2. Основная настройка NPM
-  name          = var.vsphere_datastore
+- name: Setup Minimal Linux with Docker and Nginx Proxy Manager
-  datacenter_id = data.vsphere_datacenter.dc.id
+  hosts: npm_servers
-}
+  become: yes
+  gather_facts: yes
+  tasks:
+    - name: Update apt cache and install prerequisites
+      apt:
+        name: ['apt-transport-https', 'ca-certificates', 'curl', 'gnupg', 'lsb-release']
+        state: present
+        update_cache: yes
 
-data "vsphere_resource_pool" "pool" {
+    - name: Add Docker GPG apt Key
-  name          = var.vsphere_pool
+      apt_key:
-  datacenter_id = data.vsphere_datacenter.dc.id
+        url: https://download.docker.com/linux/debian/gpg
-}
+        state: present
 
-data "vsphere_network" "network" {
+    - name: Add Docker Repository
-  name          = var.vsphere_network
+      apt_repository:
-  datacenter_id = data.vsphere_datacenter.dc.id
+        repo: "deb [arch=amd64] https://download.docker.com/linux/debian {{ ansible_distribution_release }} stable"
-}
+        state: present
 
-data "vsphere_virtual_machine" "template" {
+    - name: Install Docker and Docker Compose Plugin
-  name          = var.vsphere_template
+      apt:
-  datacenter_id = data.vsphere_datacenter.dc.id
+        name: ['docker-ce', 'docker-ce-cli', 'containerd.io', 'docker-compose-plugin']
-}
+        state: present
+        update_cache: yes
 
-# --- Создание ВМ ---
+    - name: Ensure Docker service is running and enabled
-resource "vsphere_virtual_machine" "npm_vm" {
+      systemd:
-  name             = "npm-${replace(var.vm_ip, ".", "-")}" # Имя в vCenter будет, например: npm-192-168-1-50
+        name: docker
-  resource_pool_id = data.vsphere_resource_pool.pool.id
+        state: started
-  datastore_id     = data.vsphere_datastore.datastore.id
+        enabled: yes
 
-  num_cpus = var.vm_cpu
+    - name: Create directory for Nginx Proxy Manager
-  memory   = var.vm_ram
+      file:
-  guest_id = data.vsphere_virtual_machine.template.guest_id
+        path: /opt/npm
+        state: directory
+        mode: '0755'
 
-  network_interface {
+    - name: Create docker-compose.yml for NPM
-    network_id   = data.vsphere_network.network.id
+      copy:
-    adapter_type = data.vsphere_virtual_machine.template.network_interface_types[0]
+        dest: /opt/npm/docker-compose.yml
-  }
+        content: |
+          version: '3.8'
+          services:
+            app:
+              image: 'jc21/nginx-proxy-manager:latest'
+              restart: unless-stopped
+              ports:
+                - '80:80'
+                - '81:81'
+                - '443:443'
+              volumes:
+                - ./data:/data
+                - ./letsencrypt:/etc/letsencrypt
 
-  disk {
+    - name: Run Nginx Proxy Manager via Docker Compose
-    label            = "disk0"
+      community.docker.docker_compose_v2:
-    size             = var.vm_disk_size
+        project_src: /opt/npm
-    thin_provisioned = true
+        state: present
-  }
-
-  clone {
-    template_uuid = data.vsphere_virtual_machine.template.id
-
-    customize {
-      linux_options {
-        host_name = "npm-server"
-        domain    = "local"
-      }
-      network_interface {
-        ipv4_address = var.vm_ip
-        ipv4_netmask = 23 # При необходимости маску тоже можно вынести в Survey
-      }
-      ipv4_gateway = var.vm_gateway
-      dns_server_list = ["192.168.1.1", "1.1.1.1"]
-    }
-  }
-}