0103f369ad
Adds terraform/ to provision a Hetzner cpx11 (2 vCPU / 2 GB dedicated AMD / 40 GB NVMe) for the loops runtime, and a flake + NixOS host config to converge it — replacing the slow b1 Incus VM. Mirrors the cc-ci server terraform (same nixos-infect pin, same pattern). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
39 lines
1.3 KiB
HCL
39 lines
1.3 KiB
HCL
variable "location" {
|
|
description = "Hetzner datacenter (nbg1=Nuremberg, fsn1=Falkenstein, hel1=Helsinki)"
|
|
type = string
|
|
default = "nbg1"
|
|
}
|
|
|
|
variable "server_type" {
|
|
description = <<-EOT
|
|
Hetzner server type. Must be x86 — the flake is x86_64-linux; NEVER use cax* (ARM).
|
|
cpx11 = AMD 2 vCPU / 2 GB (default; dedicated vCPU, NVMe — the orchestrator loops runtime).
|
|
cpx21 = AMD 3 vCPU / 4 GB (upgrade if claude sessions OOM under cpx11).
|
|
cx22 = AMD 2 vCPU / 4 GB (shared vCPU, cheaper alternative with more RAM).
|
|
EOT
|
|
type = string
|
|
default = "cpx11"
|
|
|
|
validation {
|
|
condition = !startswith(var.server_type, "cax")
|
|
error_message = "ARM server types (cax*) are not supported — the flake is x86_64-linux only."
|
|
}
|
|
}
|
|
|
|
variable "image" {
|
|
description = "Base OS image. nixos-infect supports debian-12 and ubuntu-24.04. debian-12 preferred."
|
|
type = string
|
|
default = "debian-12"
|
|
}
|
|
|
|
variable "ssh_public_key" {
|
|
description = "SSH public key content (the full line). Registered with Hetzner for root access post-infect. Pass via TF_VAR_ssh_public_key."
|
|
type = string
|
|
}
|
|
|
|
variable "server_name" {
|
|
description = "Hetzner server name and initial NixOS hostname"
|
|
type = string
|
|
default = "cc-ci-orchestrator"
|
|
}
|