From c01ab61bf7811bc1b6908ea8d7ff9bed3cf1e6e3 Mon Sep 17 00:00:00 2001
From: Giancarlo Panichi <giancarlo.panichi@isti.cnr.it>
Date: Mon, 19 Feb 2024 14:32:53 +0100
Subject: [PATCH] Added plan for Authorization in production

---
 .../d4s-preprod/authorization/main.tf         |  2 +-
 .../d4s-production/authorization/main.tf      | 91 +++++++++++++++++++
 .../d4s-production/authorization/provider.tf  |  3 +
 3 files changed, 95 insertions(+), 1 deletion(-)
 create mode 100644 openstack-tf/d4s-production/authorization/main.tf
 create mode 100644 openstack-tf/d4s-production/authorization/provider.tf

diff --git a/openstack-tf/d4s-preprod/authorization/main.tf b/openstack-tf/d4s-preprod/authorization/main.tf
index 8ca8a8c..375a073 100644
--- a/openstack-tf/d4s-preprod/authorization/main.tf
+++ b/openstack-tf/d4s-preprod/authorization/main.tf
@@ -37,7 +37,7 @@ module "instance_without_data_volume" {
       server_groups_ids = [],
       image_ref         = module.common_variables.ubuntu_1804
       image_volume_size = 20
-    },
+    }
   }
 }
 
diff --git a/openstack-tf/d4s-production/authorization/main.tf b/openstack-tf/d4s-production/authorization/main.tf
new file mode 100644
index 0000000..87d2a7d
--- /dev/null
+++ b/openstack-tf/d4s-production/authorization/main.tf
@@ -0,0 +1,91 @@
+# Define required providers
+terraform {
+  required_version = ">= 0.14.0"
+  required_providers {
+    openstack = {
+      source  = "terraform-provider-openstack/openstack"
+      version = "~> 1.53.0"
+    }
+  }
+}
+
+data "terraform_remote_state" "privnet_dns_router" {
+  backend = "local"
+
+  config = {
+    path = "../project-setup/terraform.tfstate"
+  }
+}
+
+#
+# Uses common_variables as module
+#
+module "common_variables" {
+  source = "../../modules/common_variables"
+}
+
+module "instance_without_data_volume" {
+  source = "../../modules/instance_without_data_volume"
+
+  instances_without_data_volume_map = {
+    auth1 = {
+      name              = "auth1",
+      description       = "This instance is a Authorization service",
+      flavor            = module.common_variables.flavor_list.m1_medium,
+      networks          = [data.terraform_remote_state.privnet_dns_router.outputs.main_private_network.name, module.common_variables.networks_list.shared_postgresql],
+      security_groups   = [data.terraform_remote_state.privnet_dns_router.outputs.default_security_group_name, data.terraform_remote_state.privnet_dns_router.outputs.security_group_list.http_and_https_from_the_load_balancers],
+      server_groups_ids = [],
+      image_ref         = module.common_variables.ubuntu_1804
+      image_volume_size = 20
+    },
+    auth2 = {
+      name              = "auth2",
+      description       = "This instance is a Authorization service",
+      flavor            = module.common_variables.flavor_list.m1_medium,
+      networks          = [data.terraform_remote_state.privnet_dns_router.outputs.main_private_network.name, module.common_variables.networks_list.shared_postgresql],
+      security_groups   = [data.terraform_remote_state.privnet_dns_router.outputs.default_security_group_name, data.terraform_remote_state.privnet_dns_router.outputs.security_group_list.http_and_https_from_the_load_balancers],
+      server_groups_ids = [],
+      image_ref         = module.common_variables.ubuntu_1804
+      image_volume_size = 20
+    }
+  }
+}
+
+
+locals {
+  cname_target = "main-lb.${data.terraform_remote_state.privnet_dns_router.outputs.dns_zone.zone_name}"
+}
+
+#
+# Add DNS record/s
+#
+module "dns_records_create" {
+  source = "../../modules/dns_resources"
+
+  dns_resources_map = {
+    auth1 = {
+      zone_id     = data.terraform_remote_state.privnet_dns_router.outputs.dns_zone_id
+      name        = join(".", ["auth1", data.terraform_remote_state.privnet_dns_router.outputs.dns_zone.zone_name])
+      description = "Authorization auth1"
+      ttl         = 8600
+      type        = "CNAME"
+      records     = [local.cname_target]
+    },
+    auth2 = {
+      zone_id     = data.terraform_remote_state.privnet_dns_router.outputs.dns_zone_id
+      name        = join(".", ["auth2", data.terraform_remote_state.privnet_dns_router.outputs.dns_zone.zone_name])
+      description = "Authorization auth2"
+      ttl         = 8600
+      type        = "CNAME"
+      records     = [local.cname_target]
+    },
+    authorization = {
+      zone_id     = data.terraform_remote_state.privnet_dns_router.outputs.dns_zone_id
+      name        = join(".", ["authorization", data.terraform_remote_state.privnet_dns_router.outputs.dns_zone.zone_name])
+      description = "Authorization load balancer"
+      ttl         = 8600
+      type        = "CNAME"
+      records     = [local.cname_target]
+    }
+  }
+}
\ No newline at end of file
diff --git a/openstack-tf/d4s-production/authorization/provider.tf b/openstack-tf/d4s-production/authorization/provider.tf
new file mode 100644
index 0000000..ca8de74
--- /dev/null
+++ b/openstack-tf/d4s-production/authorization/provider.tf
@@ -0,0 +1,3 @@
+provider "openstack" {
+  cloud = "d4s-production"
+}