terraform-cloudflare-tunnel-zone-org/variables.auto.tfvars

#cloudflare_zone           = "tips-of-mine.org"
#cloudflare_zone_id        = "a5eb1b667ba2fde356ecf6707d0dd309"
#cloudflare_account_id     = "72a90903bb240f6679aae982d4432d96"
#cloudflare_email          = "admin@tips-of-mine.org"
#cloudflare_token          = "d4yvKXkGXQZsVIBWWu2aouXI4O9L406ZmQJleUT0"

# =============================================================================
# CONFIGURATION TERRAFORM - SANS SECRETS
# =============================================================================
# Les secrets sont gérés via Vault
# Le vault_token est fourni par la CI/CD via variable d'environnement

# Configuration Vault
vault_url                = "https://vault.tips-of-mine.com"
vault_cloudflare_path    = "secret/cloudflare"

# Configuration Cloudflare
cloudflare_zone          = "tips-of-mine.org"
tunnel_name              = "home-tunnel"
tunnel_name_sldokp01     = "Tips-Of-Mine-sldokp02"
network_tunnel_sldokp01  = "10.0.2.0/24"

# Configuration DNS
dns_ttl                  = 1
dns_proxied              = true

# Options avancées
tunnel_warp_routing_enabled = false

# =============================================================================
# APPLICATIONS
# =============================================================================
applications = {
  # Application 1 : Service HTTP classique
  "http-app" = {
    subdomain      = "http-app"
    origin_url     = "https://10.0.4.133"
    no_tls_verify  = true
    access_enabled = false
  }

  # Application 2 : Service avec Access activé
  "secure-app" = {
    subdomain        = "secure"
    origin_url       = "http://10.0.4.134:8080"
    no_tls_verify    = false
    access_enabled   = true
    access_team_name = "tips-of-mine"
    access_aud_tags  = ["secure-app-tag"]
  }

  # Application 3 : Autre service
  "homeassistant" = {
    subdomain      = "home"
    origin_url     = "http://10.0.4.135:8123"
    no_tls_verify  = false
    access_enabled = false
  }
}