terraform { required_providers { coder = { source = "coder/coder" version = "0.6.10" } docker = { source = "kreuzwerker/docker" version = "~> 2.20.2" } } } data "coder_provisioner" "me" { } provider "docker" { } data "coder_workspace" "me" { } resource "coder_agent" "main" { arch = data.coder_provisioner.me.arch os = "linux" login_before_ready = false startup_script_timeout = 180 startup_script = <<-EOT set -e # install and start code-server curl -fsSL https://code-server.dev/install.sh | sh -s -- --version 4.8.3 code-server --auth none --port 13337 >/tmp/code-server.log 2>&1 & EOT } resource "coder_app" "code-server" { agent_id = coder_agent.main.id slug = "code-server" display_name = "code-server" url = "http://localhost:13337/?folder=/home/coder" icon = "/icon/code.svg" subdomain = false share = "owner" healthcheck { url = "http://localhost:13337/healthz" interval = 3 threshold = 10 } } variable "docker_image" { description = "What Docker image would you like to use for your workspace?" default = "base" # List of images available for the user to choose from. # Delete this condition to give users free text input. validation { condition = contains(["base", "java", "node"], var.docker_image) error_message = "Invalid Docker image!" } # Prevents admin errors when the image is not found validation { condition = fileexists("images/${var.docker_image}.Dockerfile") error_message = "Invalid Docker image. The file does not exist in the images directory." } } resource "docker_volume" "home_volume" { name = "coder-${data.coder_workspace.me.id}-home" # Protect the volume from being deleted due to changes in attributes. lifecycle { ignore_changes = all } # Add labels in Docker to keep track of orphan resources. labels { label = "coder.owner" value = data.coder_workspace.me.owner } labels { label = "coder.owner_id" value = data.coder_workspace.me.owner_id } labels { label = "coder.workspace_id" value = data.coder_workspace.me.id } # This field becomes outdated if the workspace is renamed but can # be useful for debugging or cleaning out dangling volumes. labels { label = "coder.workspace_name_at_creation" value = data.coder_workspace.me.name } } resource "docker_image" "coder_image" { name = "coder-base-${data.coder_workspace.me.owner}-${lower(data.coder_workspace.me.name)}" build { path = "./images/" dockerfile = "${var.docker_image}.Dockerfile" tag = ["coder-${var.docker_image}:v0.1"] } # Keep alive for other workspaces to use upon deletion keep_locally = true } resource "docker_container" "workspace" { count = data.coder_workspace.me.start_count image = docker_image.coder_image.latest # Uses lower() to avoid Docker restriction on container names. name = "coder-${data.coder_workspace.me.owner}-${lower(data.coder_workspace.me.name)}" # Hostname makes the shell more user friendly: coder@my-workspace:~$ hostname = data.coder_workspace.me.name # Use the docker gateway if the access URL is 127.0.0.1 entrypoint = ["sh", "-c", replace(coder_agent.main.init_script, "/localhost|127\\.0\\.0\\.1/", "host.docker.internal")] env = ["CODER_AGENT_TOKEN=${coder_agent.main.token}"] host { host = "host.docker.internal" ip = "host-gateway" } volumes { container_path = "/home/coder/" volume_name = docker_volume.home_volume.name read_only = false } # Add labels in Docker to keep track of orphan resources. labels { label = "coder.owner" value = data.coder_workspace.me.owner } labels { label = "coder.owner_id" value = data.coder_workspace.me.owner_id } labels { label = "coder.workspace_id" value = data.coder_workspace.me.id } labels { label = "coder.workspace_name" value = data.coder_workspace.me.name } } resource "coder_metadata" "container_info" { count = data.coder_workspace.me.start_count resource_id = docker_container.workspace[0].id item { key = "image" value = var.docker_image } }