forked from colbyford/orthanc-on-azure
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmain.tf
130 lines (96 loc) · 3.54 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
// Tags
locals {
tags = {
owner = var.tag_department
region = var.tag_region
environment = var.environment
}
}
// Existing Resources
/// Subscription ID
data "azurerm_subscription" "current" {
}
// Random Suffix Generator
resource "random_integer" "deployment_id_suffix" {
min = 100
max = 999
}
// Resource Group
resource "azurerm_resource_group" "rg" {
name = "${var.app_name}-${var.environment}-${random_integer.deployment_id_suffix.result}-rg"
location = var.location
tags = local.tags
}
// Container Registry
resource "azurerm_container_registry" "acr" {
name = "${var.app_name}${var.environment}${random_integer.deployment_id_suffix.result}acr"
resource_group_name = azurerm_resource_group.rg.name
location = azurerm_resource_group.rg.location
sku = "Basic"
admin_enabled = true
}
// Storage Account
resource "azurerm_storage_account" "storage" {
name = "${var.app_name}${var.environment}${random_integer.deployment_id_suffix.result}st"
resource_group_name = azurerm_resource_group.rg.name
location = azurerm_resource_group.rg.location
account_tier = "Standard"
account_replication_type = "LRS"
tags = local.tags
}
resource "azurerm_storage_container" "container" {
name = "data"
storage_account_name = azurerm_storage_account.storage.name
container_access_type = "blob"
}
// PostgreSQL Database
resource "azurerm_postgresql_server" "pgsql" {
name = "${var.app_name}-${var.environment}-${random_integer.deployment_id_suffix.result}-psql"
location = azurerm_resource_group.rg.location
resource_group_name = azurerm_resource_group.rg.name
administrator_login = "psqladmin"
administrator_login_password = "H@Sh1CoR3!"
sku_name = "B_Gen5_2"
version = "11"
storage_mb = 640000
public_network_access_enabled = true
ssl_enforcement_enabled = true
ssl_minimal_tls_version_enforced = "TLS1_2"
}
resource "azurerm_postgresql_database" "db" {
name = "orthancdb"
resource_group_name = azurerm_resource_group.rg.name
server_name = azurerm_postgresql_server.pgsql.name
charset = "UTF8"
collation = "English_United States.1252"
}
// App Service Plan
resource "azurerm_service_plan" "asp" {
name = "${var.app_name}-${var.environment}-${random_integer.deployment_id_suffix.result}-asp"
resource_group_name = azurerm_resource_group.rg.name
location = azurerm_resource_group.rg.location
os_type = "Linux"
sku_name = "B1"
tags = local.tags
}
// Web App
resource "azurerm_linux_web_app" "app" {
name = "${var.app_name}-${var.environment}-${random_integer.deployment_id_suffix.result}-app"
location = azurerm_resource_group.rg.location
resource_group_name = azurerm_resource_group.rg.name
service_plan_id = azurerm_service_plan.asp.id
app_settings = {
WEBSITES_PORT = "8042"
DOCKER_REGISTRY_SERVER_URL = "${azurerm_container_registry.acr.login_server}"
DOCKER_REGISTRY_SERVER_USERNAME = "${azurerm_container_registry.acr.admin_username}"
DOCKER_REGISTRY_SERVER_PASSWORD = "${azurerm_container_registry.acr.admin_password}"
}
site_config {
always_on = true
application_stack {
docker_image = "${azurerm_container_registry.acr.login_server}/orthanc-viewer-001"
docker_image_tag = "latest"
}
}
tags = local.tags
}