Jafner.net/homelab/sellswords
Joey Hafner bb337129f0
Some checks are pending
Stacks CICD / Setup (push) Waiting to run
#3 Rotate Gitea runner key, re-encrypt all keys
Also removes git-crypt encryption from all remaining secrets.
2024-08-29 14:29:51 -07:00
..
aws #5 Init Terraform Cloudflare DNS IaC 2024-08-15 15:04:13 -07:00
cloudflare #3 Rotate Gitea runner key, re-encrypt all keys 2024-08-29 14:29:51 -07:00
README.md Document recovering from lost TF state, or initializing Terraform for existing CF zones. 2024-08-28 13:13:43 -07:00

Sellswords

This directory contains Terraform code and documentation for external service providers.

Recovering from lost TF state

  • Run cf-terraforming_import.sh to generate two important artifacts per Zone:
    • List of cf-terraforming import commands, one for each record.
    • A $ZONE.import.tf configuration file with all imported records.
  • When that's done, the state file should have all configured records, but with unreadable names like terraform_managed_resource_werpwepigfnwgpowb.
  • Delete the generated $ZONE.import.tf files.
  • Run a terraform init && terraform plan and read the diff.
    • The destroyed and created resources should match 1:1, other than perhaps drift of A-records controlled by dynamic DNS.
    • If any records differ (other than the above), reconcile those differences before proceeding. Add those records (with human-readable names) to the appropriate zone configuration.
  • Run terraform apply.