Domain Records
Note: this runs on a cron job and will remove any manually added records. Please read the directions carefully below.
To add a new record:
- Fork the Repository.
- Add the record to records.yaml file in the appropriate category. See Sample Record below.
- Raise a PR.
- This will be reviewed and merged accordingly.
example.com:
- name: example.com # Name of the Record
type: A # Type of the Record
value: 127.0.0.1 # Value of the Record
# ttl: "1" # Optional: Time to live.
# proxied: false # Optional: Whether the record gets Cloudflare's origin protection
# priority: null # Optional: The priority of the recordPlease rely on the CICD process in Github Actions.
It was not possible to import existing records to tf state and then apply them, this could be fixed in future.
The recommended method for now is as follows:
- Export current records as a backup from Cloudflare
- Ensure the terraform state is clean (
terraform state listandterraform state rm cloudflare_record.default[...]) - Get all the id's
sh scripts/get-cloudflare-records.sh - Delete the records individually
sh scripts/delete-cloudflare-records.sh <DNS_RECORD_ID> terraform apply
If anything goes wrong, delete the records and restore the backup via cloudflare.
Requires:
# Add system dependencies
sh scripts/asdf-install.sh
# Copy the .env.example file and fill out the values in the .env
cp .env.example .env
# If first time setup your user
gcloud auth login
# Create a new GCP Terraform service account
sh ./scripts/create-service-account.sh <GCP_PROJECT_ID> [ACCOUNT_NAME]
# ie sh ./scripts/create-service-account.sh rad-domain
# Setup local shell
. ./scripts/export-env.sh
# Setup credentials
sh ./scripts/decode-service-account-from-env.sh
# Create state bucket
sh scripts/create-terraform-state-bucket.sh <GCP_PROJECT_ID> [BUCKET_NAME]
# ie sh scripts/create-terraform-state-bucket.sh rad-domain
tofu init
tofu plan
tofu apply