cloud-init.tf

data "template_cloudinit_config" "config" {
  gzip          = true
  base64_encode = true

  part {
    content_type = "text/cloud-config"
    content      = <<-EOF
      package_update: true
      packages:
        - docker.io
        - docker-compose
      groups:
        - docker
      users:
        - default
        - name: ubuntu
          groups: docker
      write_files:
      - path: /home/ubuntu/wireguard/wg-config.yaml
        encoding: b64
        content: ${var.wg_access_server_config}
        permissions: '0644'
      - path: /home/ubuntu/wireguard/dex-config.yaml
        encoding: b64
        content: ${var.dex_config}
        permissions: '0644'
      - path: /home/ubuntu/wireguard/docker-compose.yaml
        encoding: b64
        content: ${var.docker_compose_file}
        permissions: '0644'
      - path: /home/ubuntu/wireguard/nginx-certbot.env
        encoding: b64
        content: ${var.nginx_certbot_env}
        permissions: '0644'
      - path: /home/ubuntu/wireguard/user_conf.d/nginx-dex.conf
        encoding: b64
        content: ${var.nginx_dex_config}
        permissions: '0644'
      - path: /home/ubuntu/wireguard/user_conf.d/nginx-wg.conf
        encoding: b64
        content: ${var.nginx_wg_config}
        permissions: '0644'
      runcmd:
        - [chown, -R, ubuntu.ubuntu, /home/ubuntu/ ]
        - [ cd, /home/ubuntu/wireguard ]
        - [ docker-compose, up, -d ]
    EOF
  }
}