Skip to content
/ gitlab-tf-ibm Public

Deploy a Gitlab powered server secured by a Let's Encrypt SSL Cert using Terraform and Ansible

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cloud-design-dev/gitlab-tf-ibm

BranchesTags

Repository files navigation

gitlab-tf-ibm

Deploy a Gitlab powered server secured by a Let's Encrypt SSL Cert using Terraform and Ansible.

Prerequisites

  • A domain hosted at DNSimple.
  • Terraform and Ansible installed locally.
  • The SSH key of the server you are running this example on.

Note: If you use a different DNS hosting service you can check the Terraform Providers to see if they are supported. You will need to update the variables.tf, main.tf, and providers.tf files accordingly.

Initial Configuration

In order to properly configure the environment to run you will want to update the following values in variables.tf:

  • Replace example.com with the domain that you would like to use.
  • Replace [email protected] with a valid email address

You will also need to update the install.yml file to include your SSH-key.

    ssh-authorized-keys:
    - 'ssh-rsa example-key'

Outline of steps

The deployment example will do the following

Terraform

Terraform will be used to:

  • Spin up Infrastructure and create DNS record
  • Spin up File storage to be used as Gitlab data storage (also sets up automatic snapshots)
  • Generate custom Ansible Playbooks

Ansible

Ansible will be used to:

  • Update the base operating system
  • Mount the File storage share to /git-data
  • Install Certbot and generate a Let's Encrypt Certificate (set up to autorenew by default)
  • Install and configure Gitlab
  • Secure Gitlab with the Let's Encrypt Certificate
  • Install Docker for use as a Gitlab Runner

Deploying Gitlab using Terraform

Grab example repo Clone this example repo to your local system

git clone https://github.com/cloud-design-dev/gitlab-tf-ibm.git
cd gitlab-tf-ibm

Configure credentials.tfvars file for authentication with IBM Cloud Copy the example credentials.tfvars.tpl to credentials.tfvars and then update credentials.tfvars with the appropriate IBM Cloud and SL API information.

cp credentials.tfvars.tpl credentials.tfvars
nano/vi credentials.tfvars

Initialize Terraform

terraform init

Plan deployment and save to file

terraform plan -var-file='./credentials.tfvars` -out gitlab.tfplan

Apply deployment plan

terraform apply gitlab.tfplan

Run Ansible Playbooks

ansible-playbook -i Playbooks/inventory.env Playbooks/deploy-environment.yml

About

Deploy a Gitlab powered server secured by a Let's Encrypt SSL Cert using Terraform and Ansible

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages