terraform {
  backend "pg" {
    schema_name = "dmz_dns"
    conn_str    = "postgres://terraform@10.42.0.1/terraform_state"
  }

  required_providers {
    libvirt = {
      source = "dmacvicar/libvirt"
    }
    template = {
      source = "hashicorp/template"
    }
  }
}

provider "libvirt" {
  uri = "qemu+ssh://root@atlas.lan/system"
}

locals {
  ansible_command = join(" ", [
    "ANSIBLE_ROLES_PATH=roles",
    "ANSIBLE_HOST_KEY_CHECKING=False",
    "ANSIBLE_VAULT_PASSWORD_FILE=util/secret-service-client.sh",
    "ansible-playbook",
    "-u root",
    "-i '192.168.30.7,'",
    "hermes.yml"
  ])
}

module "vm" {
  source          = "git::https://git.pim.kunis.nl/home/tf-modules.git//debian"
  name            = "hermes"
  use_host_cert   = false
  fixed_address   = "192.168.30.7/24"
  ansible_command = local.ansible_command
  mac             = "CA:FE:C0:FF:EE:07"
}