-
-
Save nickithewatt/cb71637618605636dd1926b7f5b3b6db to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# The Let's Encrypt registration process has been included to help demo | |
# a single end-to-end process, however this would normally be split into | |
# two. See demos/acme-part-1-registration and demos/acme-part-2-core | |
# for an example of how this might be split | |
module "acme-reg" { | |
source = "../../modules/acme-account-registration" | |
acme_server_url = "${var.demo_acme_server_url}" | |
acme_registration_email = "${var.demo_acme_registration_email}" | |
} | |
module "dns" { | |
source = "../../modules/dns/indirect" | |
dns_domain_name = "${var.demo_domain_name}" | |
dns_domain_subdomain = "${var.demo_domain_subdomain}" | |
dns_cname_value = "${module.aws-demo-env.demo_env_elb_dnsname}" | |
} | |
module "acme-cert" { | |
source = "../../modules/acme-cert-request" | |
acme_server_url = "${var.demo_acme_server_url}" | |
acme_account_registration_url = "${module.acme-reg.registration_url}" | |
acme_account_key_pem = "${module.acme-reg.registration_private_key_pem}" | |
acme_certificate_common_name = "${module.dns.fqdn_domain_name}" | |
# To make use of a single direct DNS record, comment out the line | |
# above, uncomment the one below, and ensure the dns module source | |
# is loaded from modules/dns/direct. This current approach has been | |
# done to remove a cyclic dependency. | |
# acme_certificate_common_name = "${var.demo_domain_name}.${var.demo_domain_subdomain}" | |
acme_challenge_aws_access_key_id = "${var.demo_acme_challenge_aws_access_key_id}" | |
acme_challenge_aws_secret_access_key = "${var.demo_acme_challenge_aws_secret_access_key}" | |
acme_challenge_aws_region = "${var.demo_acme_challenge_aws_region}" | |
} | |
module "aws-demo-env" { | |
source = "../../modules/aws-demo-environment" | |
demo_env_nginx_count = "2" | |
demo_env_cert_body = "${module.acme-cert.certificate_pem}" | |
demo_env_cert_chain = "${module.acme-cert.certificate_issuer_pem}" | |
demo_env_cert_privkey = "${module.acme-cert.certificate_private_key_pem}" | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment