cloudflare: reorder

author: clarkzjw <[email protected]> 2023-01-13 21:49:44 -0800
committer: clarkzjw <[email protected]> 2023-01-13 21:49:44 -0800
commit: 4f274f77122479d16d74ade9a0867da71cdf3cee (patch)
tree: 5cd696e4404242724766499eddf95ee0f9eeefc1 /clarkzjw.cc/infra/cloudflare_access.tf
parent: cecb49a197e11a87e8964da965e52a25eba96414 (diff)
download: homelab-4f274f77122479d16d74ade9a0867da71cdf3cee.tar.gz
1 files changed, 22 insertions, 0 deletions
diff --git a/clarkzjw.cc/infra/cloudflare_access.tf b/clarkzjw.cc/infra/cloudflare_access.tf
new file mode 100644
index 0000000..00dfcee
--- /dev/null
+++ b/clarkzjw.cc/infra/cloudflare_access.tf
@@ -0,0 +1,22 @@
+# Cloudflare Access Policy
+resource "cloudflare_access_application" "bt" {
+  zone_id                   = data.cloudflare_zones.homelab_main_domain.zones[0].id
+  name                      = "bt.${var.homelab_main_domain}"
+  domain                    = "bt.${var.homelab_main_domain}"
+  type                      = "self_hosted"
+  session_duration          = "24h"
+  auto_redirect_to_identity = false
+}
+resource "cloudflare_access_policy" "bt" {
+  application_id = cloudflare_access_application.bt.id
+  zone_id        = data.cloudflare_zones.homelab_main_domain.zones[0].id
+  name           = "Allow"
+  precedence     = "1"
+  decision       = "allow"
+  include {
+    email = [var.cloudflare_access_application_email]
+  }
+}
author	clarkzjw <[email protected]>	2023-01-13 21:49:44 -0800
committer	clarkzjw <[email protected]>	2023-01-13 21:49:44 -0800
commit	4f274f77122479d16d74ade9a0867da71cdf3cee (patch)
tree	5cd696e4404242724766499eddf95ee0f9eeefc1 /clarkzjw.cc/infra/cloudflare_access.tf
parent	cecb49a197e11a87e8964da965e52a25eba96414 (diff)
download	homelab-4f274f77122479d16d74ade9a0867da71cdf3cee.tar.gz

diff --git a/clarkzjw.cc/infra/cloudflare_access.tf b/clarkzjw.cc/infra/cloudflare_access.tf new file mode 100644 index 0000000..00dfcee --- /dev/null +++ b/clarkzjw.cc/infra/cloudflare_access.tf
@@ -0,0 +1,22 @@
	1	# Cloudflare Access Policy
	2
	3	resource "cloudflare_access_application" "bt" {
	4	zone_id = data.cloudflare_zones.homelab_main_domain.zones[0].id
	5	name = "bt.${var.homelab_main_domain}"
	6	domain = "bt.${var.homelab_main_domain}"
	7	type = "self_hosted"
	8	session_duration = "24h"
	9	auto_redirect_to_identity = false
	10	}
	11
	12	resource "cloudflare_access_policy" "bt" {
	13	application_id = cloudflare_access_application.bt.id
	14	zone_id = data.cloudflare_zones.homelab_main_domain.zones[0].id
	15	name = "Allow"
	16	precedence = "1"
	17	decision = "allow"
	18
	19	include {
	20	email = [var.cloudflare_access_application_email]
	21	}
	22	}