iamthefij
/
homelab-nomad
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Refactor use of wesher to be behind a variable toggle 

Occasionally I run into issues with Wesher. This makes it easier to
disable use of Wesher by setting TF_VAR_use_wesher to false.
This commit is contained in:
IamTheFij 2023-08-24 12:36:47 -07:00
parent e2c35a82a9
commit d5078b24da
34 changed files with 146 additions and 50 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
backups.tf
View File

@ -1,3 +1,5 @@
module "backups" { module "backups" {
source = "./backups" source = "./backups"
use_wesher = var.use_wesher
} }

2
backups/backup.nomad
View File

@ -31,7 +31,9 @@ job "backup%{ if batch_node != null }-oneoff-${batch_node}%{ endif }" {
mode = "bridge" mode = "bridge"
port "metrics" { port "metrics" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 8080 to = 8080
} }
} }

2
backups/backups.tf
View File

@ -6,6 +6,7 @@ resource "nomad_job" "backup" {
jobspec = templatefile("${path.module}/backup.nomad", { jobspec = templatefile("${path.module}/backup.nomad", {
module_path = path.module, module_path = path.module,
batch_node = null, batch_node = null,
use_wesher = var.use_wesher
}) })
} }
@ -24,5 +25,6 @@ resource "nomad_job" "backup-oneoff" {
jobspec = templatefile("${path.module}/backup.nomad", { jobspec = templatefile("${path.module}/backup.nomad", {
module_path = path.module, module_path = path.module,
batch_node = each.key, batch_node = each.key,
use_wesher = var.use_wesher
}) })
} }

5
backups/vars.tf Normal file
View File

@ -0,0 +1,5 @@
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

1
core.tf
View File

@ -6,6 +6,7 @@ module "core" {
source = "./core" source = "./core"
base_hostname = var.base_hostname base_hostname = var.base_hostname
use_wesher = var.use_wesher
# Metrics and Blocky depend on databases # Metrics and Blocky depend on databases
depends_on = [module.databases] depends_on = [module.databases]

1
core/authelia.tf
View File

@ -9,6 +9,7 @@ module "authelia" {
ingress = true ingress = true
service_port = 9999 service_port = 9999
service_port_static = true service_port_static = true
use_wesher = var.use_wesher
# metrics_port = 9959 # metrics_port = 9959
env = { env = {

16
core/blocky/blocky.nomad
View File

@ -24,7 +24,9 @@ job "blocky" {
} }
port "api" { port "api" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = "4000" to = "4000"
} }
@ -66,7 +68,7 @@ job "blocky" {
config { config {
image = "ghcr.io/0xerr0r/blocky" image = "ghcr.io/0xerr0r/blocky"
args = ["-c", "${NOMAD_TASK_DIR}/config.yml"] args = ["-c", "$${NOMAD_TASK_DIR}/config.yml"]
ports = ["dns", "api"] ports = ["dns", "api"]
} }
@ -78,7 +80,7 @@ job "blocky" {
template { template {
data = var.config_data data = var.config_data
destination = "${NOMAD_TASK_DIR}/config.yml" destination = "$${NOMAD_TASK_DIR}/config.yml"
splay = "1m" splay = "1m"
wait { wait {
@ -95,7 +97,7 @@ job "blocky" {
{{- end }} {{- end }}
{{- end }} {{- end }}
EOF EOF
destination = "${NOMAD_TASK_DIR}/nomad.hosts" destination = "$${NOMAD_TASK_DIR}/nomad.hosts"
change_mode = "noop" change_mode = "noop"
wait { wait {
@ -116,7 +118,7 @@ job "blocky" {
config { config {
image = "alpine:3.17" image = "alpine:3.17"
ports = ["tls"] ports = ["tls"]
args = ["/bin/sh", "${NOMAD_TASK_DIR}/start.sh"] args = ["/bin/sh", "$${NOMAD_TASK_DIR}/start.sh"]
} }
resources { resources {
@ -130,7 +132,7 @@ set -e
apk add stunnel apk add stunnel
exec stunnel {{ env "NOMAD_TASK_DIR" }}/stunnel.conf exec stunnel {{ env "NOMAD_TASK_DIR" }}/stunnel.conf
EOF EOF
destination = "${NOMAD_TASK_DIR}/start.sh" destination = "$${NOMAD_TASK_DIR}/start.sh"
} }
template { template {
@ -155,7 +157,7 @@ connect = {{ .Address }}:{{ .Port }}
{{- end }} {{- end }}
PSKsecrets = {{ env "NOMAD_SECRETS_DIR" }}/stunnel_psk.txt PSKsecrets = {{ env "NOMAD_SECRETS_DIR" }}/stunnel_psk.txt
EOF EOF
destination = "${NOMAD_TASK_DIR}/stunnel.conf" destination = "$${NOMAD_TASK_DIR}/stunnel.conf"
} }
template { template {
@ -169,7 +171,7 @@ EOF
data = <<EOF data = <<EOF
{{- with nomadVar "nomad/jobs/blocky/blocky/stunnel" -}}{{ .redis_stunnel_psk }}{{ end -}} {{- with nomadVar "nomad/jobs/blocky/blocky/stunnel" -}}{{ .redis_stunnel_psk }}{{ end -}}
EOF EOF
destination = "${NOMAD_SECRETS_DIR}/stunnel_psk.txt" destination = "$${NOMAD_SECRETS_DIR}/stunnel_psk.txt"
} }
} }

12
core/blocky/blocky.tf
View File

@ -1,14 +1,8 @@
variable "base_hostname" {
type = string
description = "Base hostname to serve content from"
default = "dev.homelab"
}
locals { locals {
config_data = templatefile( config_data = templatefile(
"${path.module}/config.yml", "${path.module}/config.yml",
{ {
"base_hostname" = var.base_hostname, base_hostname = var.base_hostname,
} }
) )
} }
@ -21,5 +15,7 @@ resource "nomad_job" "blocky" {
} }
} }
jobspec = file("${path.module}/blocky.nomad") jobspec = templatefile("${path.module}/blocky.nomad", {
use_wesher = var.use_wesher,
})
} }

11
core/blocky/vars.tf Normal file
View File

@ -0,0 +1,11 @@
variable "base_hostname" {
type = string
description = "Base hostname to serve content from"
default = "dev.homelab"
}
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

28
core/lldap.nomad
View File

@ -9,11 +9,15 @@ job "lldap" {
mode = "bridge" mode = "bridge"
port "web" { port "web" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
} }
port "ldap" { port "ldap" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
} }
port "tls" {} port "tls" {}
@ -48,13 +52,13 @@ job "lldap" {
config { config {
image = "nitnelave/lldap:latest" image = "nitnelave/lldap:latest"
ports = ["ldap", "web"] ports = ["ldap", "web"]
args = ["run", "--config-file", "${NOMAD_SECRETS_DIR}/lldap_config.toml"] args = ["run", "--config-file", "$${NOMAD_SECRETS_DIR}/lldap_config.toml"]
} }
env = { env = {
"LLDAP_VERBOSE" = "true" "LLDAP_VERBOSE" = "true"
"LLDAP_LDAP_PORT" = "${NOMAD_PORT_ldap}" "LLDAP_LDAP_PORT" = "$${NOMAD_PORT_ldap}"
"LLDAP_HTTP_PORT" = "${NOMAD_PORT_web}" "LLDAP_HTTP_PORT" = "$${NOMAD_PORT_web}"
} }
template { template {
@ -86,7 +90,7 @@ user = "{{ .smtp_user }}"
password = "{{ .smtp_password }}" password = "{{ .smtp_password }}"
{{ end -}} {{ end -}}
EOH EOH
destination = "${NOMAD_SECRETS_DIR}/lldap_config.toml" destination = "$${NOMAD_SECRETS_DIR}/lldap_config.toml"
change_mode = "restart" change_mode = "restart"
} }
@ -112,7 +116,7 @@ password = "{{ .smtp_password }}"
"2m", "2m",
"/bin/bash", "/bin/bash",
"-c", "-c",
"until /usr/bin/mysql --defaults-extra-file=${NOMAD_SECRETS_DIR}/my.cnf < ${NOMAD_SECRETS_DIR}/bootstrap.sql; do sleep 10; done", "until /usr/bin/mysql --defaults-extra-file=$${NOMAD_SECRETS_DIR}/my.cnf < $${NOMAD_SECRETS_DIR}/bootstrap.sql; do sleep 10; done",
] ]
} }
@ -127,7 +131,7 @@ user=root
password={{ .mysql_root_password }} password={{ .mysql_root_password }}
{{ end -}} {{ end -}}
EOF EOF
destination = "${NOMAD_SECRETS_DIR}/my.cnf" destination = "$${NOMAD_SECRETS_DIR}/my.cnf"
} }
template { template {
@ -146,7 +150,7 @@ GRANT ALL ON `{{ .db_name }}`.*
SELECT 'NOOP'; SELECT 'NOOP';
{{ end -}} {{ end -}}
EOF EOF
destination = "${NOMAD_SECRETS_DIR}/bootstrap.sql" destination = "$${NOMAD_SECRETS_DIR}/bootstrap.sql"
} }
resources { resources {
@ -166,7 +170,7 @@ SELECT 'NOOP';
config { config {
image = "alpine:3.17" image = "alpine:3.17"
ports = ["tls"] ports = ["tls"]
args = ["/bin/sh", "${NOMAD_TASK_DIR}/start.sh"] args = ["/bin/sh", "$${NOMAD_TASK_DIR}/start.sh"]
} }
resources { resources {
@ -180,7 +184,7 @@ set -e
apk add stunnel apk add stunnel
exec stunnel {{ env "NOMAD_TASK_DIR" }}/stunnel.conf exec stunnel {{ env "NOMAD_TASK_DIR" }}/stunnel.conf
EOF EOF
destination = "${NOMAD_TASK_DIR}/start.sh" destination = "$${NOMAD_TASK_DIR}/start.sh"
} }
template { template {
@ -203,7 +207,7 @@ connect = {{ .Address }}:{{ .Port }}
{{- end }} {{- end }}
PSKsecrets = {{ env "NOMAD_SECRETS_DIR" }}/mysql_stunnel_psk.txt PSKsecrets = {{ env "NOMAD_SECRETS_DIR" }}/mysql_stunnel_psk.txt
EOF EOF
destination = "${NOMAD_TASK_DIR}/stunnel.conf" destination = "$${NOMAD_TASK_DIR}/stunnel.conf"
} }
template { template {
@ -212,14 +216,14 @@ PSKsecrets = {{ env "NOMAD_SECRETS_DIR" }}/mysql_stunnel_psk.txt
{{ .allowed_psks }} {{ .allowed_psks }}
{{- end }} {{- end }}
EOF EOF
destination = "${NOMAD_TASK_DIR}/stunnel_psk.txt" destination = "$${NOMAD_TASK_DIR}/stunnel_psk.txt"
} }
template { template {
data = <<EOF data = <<EOF
{{- with nomadVar "nomad/jobs/lldap/lldap/stunnel" }}{{ .mysql_stunnel_psk }}{{ end -}} {{- with nomadVar "nomad/jobs/lldap/lldap/stunnel" }}{{ .mysql_stunnel_psk }}{{ end -}}
EOF EOF
destination = "${NOMAD_SECRETS_DIR}/mysql_stunnel_psk.txt" destination = "$${NOMAD_SECRETS_DIR}/mysql_stunnel_psk.txt"
} }
} }

11
core/loki.tf
View File

@ -1,12 +1,15 @@
module "loki" { module "loki" {
source = "../services/service" source = "../services/service"
name = "loki" name = "loki"
image = "grafana/loki:2.2.1" image = "grafana/loki:2.2.1"
args = ["--config.file=$${NOMAD_TASK_DIR}/loki-config.yml"] args = ["--config.file=$${NOMAD_TASK_DIR}/loki-config.yml"]
service_port = 3100 service_port = 3100
ingress = true ingress = true
sticky_disk = true use_wesher = var.use_wesher
sticky_disk = true
# healthcheck = "/ready" # healthcheck = "/ready"
templates = [ templates = [
{ {

10
core/main.tf
View File

@ -2,6 +2,8 @@ module "blocky" {
source = "./blocky" source = "./blocky"
base_hostname = var.base_hostname base_hostname = var.base_hostname
use_wesher = var.use_wesher
# Not in this module # Not in this module
# depends_on = [module.databases] # depends_on = [module.databases]
} }
@ -13,7 +15,9 @@ module "traefik" {
} }
module "metrics" { module "metrics" {
source = "./metrics" source = "./metrics"
use_wesher = var.use_wesher
# Not in this module # Not in this module
# depends_on = [module.databases] # depends_on = [module.databases]
} }
@ -32,5 +36,7 @@ resource "nomad_job" "ddclient" {
} }
resource "nomad_job" "lldap" { resource "nomad_job" "lldap" {
jobspec = file("${path.module}/lldap.nomad") jobspec = templatefile("${path.module}/lldap.nomad", {
use_wesher = var.use_wesher,
})
} }

10
core/metrics/exporters.nomad
View File

@ -8,7 +8,9 @@ job "exporters" {
mode = "bridge" mode = "bridge"
port "promtail" { port "promtail" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 9080 to = 9080
} }
} }
@ -19,8 +21,8 @@ job "exporters" {
port = "promtail" port = "promtail"
meta { meta {
nomad_dc = "${NOMAD_DC}" nomad_dc = "$${NOMAD_DC}"
nomad_node_name = "${node.unique.name}" nomad_node_name = "$${node.unique.name}"
} }
tags = [ tags = [
@ -39,7 +41,7 @@ job "exporters" {
config { config {
image = "grafana/promtail:2.7.1" image = "grafana/promtail:2.7.1"
args = ["-config.file=${NOMAD_TASK_DIR}/promtail.yml"] args = ["-config.file=$${NOMAD_TASK_DIR}/promtail.yml"]
ports = ["promtail"] ports = ["promtail"]
# Bind mount host machine-id and log directories # Bind mount host machine-id and log directories
@ -127,7 +129,7 @@ scrape_configs:
- source_labels: ['__journal_com_hashicorp_nomad_task_name'] - source_labels: ['__journal_com_hashicorp_nomad_task_name']
target_label: nomad_task_name target_label: nomad_task_name
EOF EOF
destination = "${NOMAD_TASK_DIR}/promtail.yml" destination = "$${NOMAD_TASK_DIR}/promtail.yml"
} }
resources { resources {

2
core/metrics/grafana.nomad
View File

@ -8,7 +8,9 @@ job "grafana" {
mode = "bridge" mode = "bridge"
port "web" { port "web" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 3000 to = 3000
} }
} }

9
core/metrics/metrics.tf
View File

@ -3,7 +3,9 @@ resource "nomad_job" "exporters" {
enabled = true enabled = true
} }
jobspec = file("${path.module}/exporters.nomad") jobspec = templatefile("${path.module}/exporters.nomad", {
use_wesher = var.use_wesher,
})
} }
resource "nomad_job" "prometheus" { resource "nomad_job" "prometheus" {
@ -11,7 +13,9 @@ resource "nomad_job" "prometheus" {
enabled = true enabled = true
} }
jobspec = file("${path.module}/prometheus.nomad") jobspec = templatefile("${path.module}/prometheus.nomad", {
use_wesher = var.use_wesher,
})
} }
resource "nomad_job" "grafana" { resource "nomad_job" "grafana" {
@ -21,6 +25,7 @@ resource "nomad_job" "grafana" {
jobspec = templatefile("${path.module}/grafana.nomad", { jobspec = templatefile("${path.module}/grafana.nomad", {
module_path = path.module module_path = path.module
use_wesher = var.use_wesher
}) })
depends_on = [nomad_job.prometheus] depends_on = [nomad_job.prometheus]

12
core/metrics/prometheus.nomad
View File

@ -8,12 +8,16 @@ job "prometheus" {
mode = "bridge" mode = "bridge"
port "web" { port "web" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 9090 to = 9090
} }
port "pushgateway" { port "pushgateway" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
static = 9091 static = 9091
} }
} }
@ -48,8 +52,8 @@ job "prometheus" {
image = "prom/prometheus:v2.43.0" image = "prom/prometheus:v2.43.0"
ports = ["web"] ports = ["web"]
args = [ args = [
"--config.file=${NOMAD_TASK_DIR}/prometheus.yml", "--config.file=$${NOMAD_TASK_DIR}/prometheus.yml",
"--storage.tsdb.path=${NOMAD_ALLOC_DIR}/data/tsdb", "--storage.tsdb.path=$${NOMAD_ALLOC_DIR}/data/tsdb",
"--web.listen-address=0.0.0.0:9090", "--web.listen-address=0.0.0.0:9090",
"--web.console.libraries=/usr/share/prometheus/console_libraries", "--web.console.libraries=/usr/share/prometheus/console_libraries",
"--web.console.templates=/usr/share/prometheus/consoles", "--web.console.templates=/usr/share/prometheus/consoles",
@ -112,7 +116,7 @@ scrape_configs:
EOF EOF
change_mode = "signal" change_mode = "signal"
change_signal = "SIGHUP" change_signal = "SIGHUP"
destination = "${NOMAD_TASK_DIR}/prometheus.yml" destination = "$${NOMAD_TASK_DIR}/prometheus.yml"
} }
resources { resources {
@ -128,7 +132,7 @@ scrape_configs:
image = "prom/pushgateway" image = "prom/pushgateway"
ports = ["pushgateway"] ports = ["pushgateway"]
args = [ args = [
"--persistence.file=${NOMAD_ALLOC_DIR}/pushgateway-persistence", "--persistence.file=$${NOMAD_ALLOC_DIR}/pushgateway-persistence",
] ]
} }

5
core/metrics/vars.tf Normal file
View File

@ -0,0 +1,5 @@
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

6
core/vars.tf
View File

@ -3,3 +3,9 @@ variable "base_hostname" {
description = "Base hostname to serve content from" description = "Base hostname to serve content from"
default = "dev.homelab" default = "dev.homelab"
} }
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

2
services.tf
View File

@ -1,5 +1,7 @@
module "services" { module "services" {
source = "./services" source = "./services"
use_wesher = var.use_wesher
depends_on = [module.databases, module.core] depends_on = [module.databases, module.core]
} }

1
services/adminer.tf
View File

@ -6,6 +6,7 @@ module "adminer" {
ingress = true ingress = true
service_port = 8080 service_port = 8080
use_wesher = var.use_wesher
use_mysql = true use_mysql = true
use_postgres = true use_postgres = true

1
services/bazarr.tf
View File

@ -11,6 +11,7 @@ module "bazarr" {
ingress = true ingress = true
service_port = 6767 service_port = 6767
use_wesher = var.use_wesher
use_postgres = true use_postgres = true
postgres_bootstrap = { postgres_bootstrap = {

6
services/ip-dvr.nomad
View File

@ -9,7 +9,9 @@ job "ipdvr" {
mode = "bridge" mode = "bridge"
port "main" { port "main" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 8080 to = 8080
} }
} }
@ -75,7 +77,9 @@ job "ipdvr" {
network { network {
mode = "bridge" mode = "bridge"
port "main" { port "main" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
static = 6789 static = 6789
} }
} }
@ -142,7 +146,9 @@ job "ipdvr" {
network { network {
mode = "bridge" mode = "bridge"
port "main" { port "main" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 8989 to = 8989
} }
} }

1
services/lidarr.tf
View File

@ -6,6 +6,7 @@ module "lidarr" {
ingress = true ingress = true
service_port = 8686 service_port = 8686
use_wesher = var.use_wesher
use_postgres = true use_postgres = true
postgres_bootstrap = { postgres_bootstrap = {

8
services/main.tf
View File

@ -1,7 +1,5 @@
module "backups" {
source = "./backups"
}
resource "nomad_job" "ipdvr" { resource "nomad_job" "ipdvr" {
jobspec = file("${path.module}/ip-dvr.nomad") jobspec = templatefile("${path.module}/ip-dvr.nomad", {
use_wesher = var.use_wesher,
})
} }

2
services/media-library.tf
View File

@ -6,6 +6,8 @@ module "media-library" {
args = ["caddy", "file-server", "--root", "/mnt/media", "--browse"] args = ["caddy", "file-server", "--root", "/mnt/media", "--browse"]
ingress = true ingress = true
service_port = 80 service_port = 80
use_wesher = var.use_wesher
host_volumes = [ host_volumes = [
{ {
name = "media-read" name = "media-read"

1
services/minitor.tf
View File

@ -5,6 +5,7 @@ module "minitor" {
image = "iamthefij/minitor-go:1.4.1" image = "iamthefij/minitor-go:1.4.1"
args = ["-metrics", "-config=$${NOMAD_TASK_DIR}/config.yml"] args = ["-metrics", "-config=$${NOMAD_TASK_DIR}/config.yml"]
service_port = 8080 service_port = 8080
use_wesher = var.use_wesher
prometheus = true prometheus = true
env = { env = {

1
services/photoprism.tf
View File

@ -39,6 +39,7 @@ module "photoprism_module" {
ingress = true ingress = true
service_port = 2342 service_port = 2342
use_wesher = var.use_wesher
ingress_middlewares = [ ingress_middlewares = [
"authelia@nomad" "authelia@nomad"
] ]

1
services/service/main.tf
View File

@ -20,6 +20,7 @@ resource "nomad_job" "service" {
stunnel_resources = var.stunnel_resources stunnel_resources = var.stunnel_resources
service_tags = var.service_tags service_tags = var.service_tags
custom_services = var.custom_services custom_services = var.custom_services
use_wesher = var.use_wesher
ingress = var.ingress ingress = var.ingress
ingress_rule = var.ingress_rule ingress_rule = var.ingress_rule

2
services/service/service_template.nomad
View File

@ -12,7 +12,9 @@ job "${name}" {
mode = "bridge" mode = "bridge"
%{ if service_port != null ~} %{ if service_port != null ~}
port "main" { port "main" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
%{ if service_port_static ~} %{ if service_port_static ~}
static = ${service_port} static = ${service_port}
%{ else ~} %{ else ~}

6
services/service/vars.tf
View File

@ -239,3 +239,9 @@ variable "custom_services" {
default = [] default = []
} }
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

5
services/vars.tf Normal file
View File

@ -0,0 +1,5 @@
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}

4
services/whoami.nomad
View File

@ -15,7 +15,9 @@ job "whoami" {
network { network {
mode = "bridge" mode = "bridge"
port "web" { port "web" {
%{~ if use_wesher ~}
host_network = "wesher" host_network = "wesher"
%{~ endif ~}
to = 80 to = 80
} }
} }
@ -45,7 +47,7 @@ job "whoami" {
config { config {
image = "containous/whoami:latest" image = "containous/whoami:latest"
ports = ["web"] ports = ["web"]
args = ["--port", "${NOMAD_PORT_web}"] args = ["--port", "$${NOMAD_PORT_web}"]
} }
resources { resources {

4
services/whoami.tf
View File

@ -6,5 +6,7 @@ resource "nomad_job" "whoami" {
} }
} }
jobspec = file("${path.module}/whoami.nomad") jobspec = templatefile("${path.module}/whoami.nomad", {
use_wesher = var.use_wesher
})
} }

6
vars.tf
View File

@ -15,3 +15,9 @@ variable "nomad_secret_id" {
sensitive = true sensitive = true
default = "" default = ""
} }
variable "use_wesher" {
type = bool
description = "Indicates whether or not services should expose themselves on the wesher network"
default = true
}