diff options
author | clarkzjw <[email protected]> | 2023-01-13 21:49:44 -0800 |
---|---|---|
committer | clarkzjw <[email protected]> | 2023-01-13 21:49:44 -0800 |
commit | 4f274f77122479d16d74ade9a0867da71cdf3cee (patch) | |
tree | 5cd696e4404242724766499eddf95ee0f9eeefc1 /clarkzjw.cc/infra/cloudflare_access.tf | |
parent | cecb49a197e11a87e8964da965e52a25eba96414 (diff) | |
download | homelab-4f274f77122479d16d74ade9a0867da71cdf3cee.tar.gz |
cloudflare: reorder
Diffstat (limited to 'clarkzjw.cc/infra/cloudflare_access.tf')
-rw-r--r-- | clarkzjw.cc/infra/cloudflare_access.tf | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/clarkzjw.cc/infra/cloudflare_access.tf b/clarkzjw.cc/infra/cloudflare_access.tf new file mode 100644 index 0000000..00dfcee --- /dev/null +++ b/clarkzjw.cc/infra/cloudflare_access.tf | |||
@@ -0,0 +1,22 @@ | |||
1 | # Cloudflare Access Policy | ||
2 | |||
3 | resource "cloudflare_access_application" "bt" { | ||
4 | zone_id = data.cloudflare_zones.homelab_main_domain.zones[0].id | ||
5 | name = "bt.${var.homelab_main_domain}" | ||
6 | domain = "bt.${var.homelab_main_domain}" | ||
7 | type = "self_hosted" | ||
8 | session_duration = "24h" | ||
9 | auto_redirect_to_identity = false | ||
10 | } | ||
11 | |||
12 | resource "cloudflare_access_policy" "bt" { | ||
13 | application_id = cloudflare_access_application.bt.id | ||
14 | zone_id = data.cloudflare_zones.homelab_main_domain.zones[0].id | ||
15 | name = "Allow" | ||
16 | precedence = "1" | ||
17 | decision = "allow" | ||
18 | |||
19 | include { | ||
20 | email = [var.cloudflare_access_application_email] | ||
21 | } | ||
22 | } | ||