riju/tf/ec2.tf

resource "aws_security_group" "dev_server" {
  count = local.ssh_key_available ? 1 : 0

  name        = "riju-dev-server"
  description = "Security group for Riju dev server"

  ingress {
    description = "SSH"
    from_port   = 22
    to_port     = 22
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  ingress {
    description = "HTTP"
    from_port   = 6119
    to_port     = 6119
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }
}

resource "aws_instance" "dev_server" {
  count = local.ssh_key_available ? 1 : 0

  ami = data.aws_ami.ubuntu[count.index].id
  instance_type = "t3.2xlarge"
  ebs_optimized = true

  security_groups = [aws_security_group.dev_server[count.index].name]

  iam_instance_profile = aws_iam_instance_profile.dev_server.name
  key_name = data.external.env.result.SSH_KEY_NAME

  root_block_device {
    volume_size = 256

    tags = merge(local.tags, {
      Name = "Riju dev server"
    })
  }

  tags = {
    Name = "Riju dev server"
  }

  lifecycle {
    ignore_changes = [
      ami,
      security_groups,  # legacy
    ]
  }
}

resource "aws_eip" "dev_server" {
  count = local.ssh_key_available ? 1 : 0
  tags = {
    Name = "Riju dev server"
  }
}

resource "aws_eip_association" "dev_server" {
  count = local.ssh_key_available ? 1 : 0
  instance_id = aws_instance.dev_server[count.index].id
  allocation_id = aws_eip.dev_server[count.index].id
}