{"id":46606139,"url":"https://github.com/freed-dev-llc/terraform-turingpi-modules","last_synced_at":"2026-05-25T06:01:27.171Z","repository":{"id":331001234,"uuid":"1124756665","full_name":"freed-dev-llc/terraform-turingpi-modules","owner":"freed-dev-llc","description":"Terraform modules for Turing Pi clusters. Use with jfreed-dev/turingpi provider.","archived":false,"fork":false,"pushed_at":"2026-05-16T13:01:39.000Z","size":240,"stargazers_count":2,"open_issues_count":9,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-05-16T14:45:43.716Z","etag":null,"topics":["golang","homelabs","infrastructure-as-a-code","ingress-nginx","k3s","k3s-cluster","k8s-stack","kubernetes-cluster","longhorn","metallb","monitoring","portainer","rk3588","rkllm","rkllm-runtime","rockchip","talos-cloud","terraform-module","terraform-provider","turing-pi"],"latest_commit_sha":null,"homepage":"https://registry.terraform.io/modules/jfreed-dev/modules/turingpi","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/freed-dev-llc.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-12-29T15:04:33.000Z","updated_at":"2026-05-16T13:01:43.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/freed-dev-llc/terraform-turingpi-modules","commit_stats":null,"previous_names":["jfreed-dev/terraform-turingpi-modules","freed-dev-llc/terraform-turingpi-modules"],"tags_count":23,"template":false,"template_full_name":null,"purl":"pkg:github/freed-dev-llc/terraform-turingpi-modules","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freed-dev-llc%2Fterraform-turingpi-modules","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freed-dev-llc%2Fterraform-turingpi-modules/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freed-dev-llc%2Fterraform-turingpi-modules/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freed-dev-llc%2Fterraform-turingpi-modules/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/freed-dev-llc","download_url":"https://codeload.github.com/freed-dev-llc/terraform-turingpi-modules/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freed-dev-llc%2Fterraform-turingpi-modules/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33379721,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-23T01:21:08.577Z","status":"online","status_checked_at":"2026-05-23T02:00:05.530Z","response_time":53,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["golang","homelabs","infrastructure-as-a-code","ingress-nginx","k3s","k3s-cluster","k8s-stack","kubernetes-cluster","longhorn","metallb","monitoring","portainer","rk3588","rkllm","rkllm-runtime","rockchip","talos-cloud","terraform-module","terraform-provider","turing-pi"],"created_at":"2026-03-07T17:18:24.067Z","updated_at":"2026-05-25T06:01:27.159Z","avatar_url":"https://github.com/freed-dev-llc.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Terraform Turing Pi Modules\n\n[![Terraform Validate](https://github.com/freed-dev-llc/terraform-turingpi-modules/actions/workflows/validate.yml/badge.svg)](https://github.com/freed-dev-llc/terraform-turingpi-modules/actions/workflows/validate.yml)\n[![Security](https://github.com/freed-dev-llc/terraform-turingpi-modules/actions/workflows/security.yml/badge.svg)](https://github.com/freed-dev-llc/terraform-turingpi-modules/actions/workflows/security.yml)\n[![Release](https://img.shields.io/github/v/release/freed-dev-llc/terraform-turingpi-modules?logo=github)](https://github.com/freed-dev-llc/terraform-turingpi-modules/releases)\n[![Terraform Registry](https://img.shields.io/badge/Terraform%20Registry-freed--dev--llc%2Fturingpi-blue?logo=terraform)](https://registry.terraform.io/modules/freed-dev-llc/modules/turingpi/latest)\n[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)\n\nReusable Terraform modules for Turing Pi cluster provisioning and management.\n\n## Cluster Modules\n\n| Module | Description |\n|--------|-------------|\n| [flash-nodes](./modules/flash-nodes) | Flash firmware to Turing Pi nodes |\n| [talos-image](./modules/talos-image) | Generate Talos images with extensions (Longhorn support) |\n| [talos-cluster](./modules/talos-cluster) | Deploy Talos Linux Kubernetes cluster |\n| [k3s-cluster](./modules/k3s-cluster) | Deploy K3s Kubernetes cluster on Armbian |\n\n## Addon Modules\n\n| Module | Description |\n|--------|-------------|\n| [cert-manager](./modules/addons/cert-manager) | TLS certificate management with Let's Encrypt + DNS01 (Cloudflare) |\n| [ingress-nginx](./modules/addons/ingress-nginx) | NGINX Ingress controller |\n| [longhorn](./modules/addons/longhorn) | Distributed block storage with NVMe support |\n| [metallb](./modules/addons/metallb) | MetalLB load balancer |\n| [monitoring](./modules/addons/monitoring) | Prometheus, Grafana, Alertmanager stack |\n| [portainer](./modules/addons/portainer) | Cluster management agent (CE/BE) |\n\n## Quick Start - Talos\n\n```hcl\n# Deploy Talos cluster\nmodule \"talos\" {\n  source  = \"freed-dev-llc/modules/turingpi//modules/talos-cluster\"\n  version = \"~\u003e 1.4\"\n\n  cluster_name     = \"homelab\"\n  cluster_endpoint = \"https://10.10.88.73:6443\"\n\n  control_plane = [{ host = \"10.10.88.73\" }]\n  workers = [\n    { host = \"10.10.88.74\" },\n    { host = \"10.10.88.75\" },\n    { host = \"10.10.88.76\" }\n  ]\n\n  # Enable NVMe for Longhorn\n  nvme_storage_enabled = true\n\n  kubeconfig_path = \"./kubeconfig\"\n}\n\n# Add MetalLB\nmodule \"metallb\" {\n  source     = \"freed-dev-llc/modules/turingpi//modules/addons/metallb\"\n  depends_on = [module.talos]\n  ip_range   = \"10.10.88.80-10.10.88.89\"\n}\n```\n\n## Quick Start - K3s (Armbian)\n\n```hcl\n# Deploy K3s cluster\nmodule \"k3s\" {\n  source  = \"freed-dev-llc/modules/turingpi//modules/k3s-cluster\"\n  version = \"~\u003e 1.4\"\n\n  cluster_name = \"homelab\"\n\n  control_plane = {\n    host     = \"10.10.88.73\"\n    ssh_user = \"root\"\n    ssh_key  = file(\"~/.ssh/id_rsa\")\n  }\n\n  workers = [\n    { host = \"10.10.88.74\", ssh_user = \"root\", ssh_key = file(\"~/.ssh/id_rsa\") },\n    { host = \"10.10.88.75\", ssh_user = \"root\", ssh_key = file(\"~/.ssh/id_rsa\") },\n    { host = \"10.10.88.76\", ssh_user = \"root\", ssh_key = file(\"~/.ssh/id_rsa\") }\n  ]\n\n  # Enable NVMe for Longhorn\n  nvme_storage_enabled = true\n\n  kubeconfig_path = \"./kubeconfig\"\n}\n\n# Add MetalLB\nmodule \"metallb\" {\n  source     = \"freed-dev-llc/modules/turingpi//modules/addons/metallb\"\n  depends_on = [module.k3s]\n  ip_range   = \"10.10.88.80-10.10.88.89\"\n}\n```\n\n## Full Stack Example\n\n```hcl\n# Cluster (Talos or K3s)\nmodule \"cluster\" {\n  source = \"...\"  # talos-cluster or k3s-cluster\n  # ... cluster config\n}\n\n# MetalLB for LoadBalancer services\nmodule \"metallb\" {\n  source     = \"freed-dev-llc/modules/turingpi//modules/addons/metallb\"\n  depends_on = [module.cluster]\n  ip_range   = \"10.10.88.80-10.10.88.89\"\n}\n\n# Ingress controller\nmodule \"ingress\" {\n  source          = \"freed-dev-llc/modules/turingpi//modules/addons/ingress-nginx\"\n  depends_on      = [module.metallb]\n  loadbalancer_ip = \"10.10.88.80\"\n}\n\n# Distributed storage\nmodule \"longhorn\" {\n  source                    = \"freed-dev-llc/modules/turingpi//modules/addons/longhorn\"\n  depends_on                = [module.cluster]\n  create_nvme_storage_class = true\n}\n\n# Monitoring\nmodule \"monitoring\" {\n  source                 = \"freed-dev-llc/modules/turingpi//modules/addons/monitoring\"\n  depends_on             = [module.longhorn]\n  grafana_admin_password = var.grafana_password\n  storage_class          = \"longhorn\"\n}\n\n# Cluster management\nmodule \"portainer\" {\n  source          = \"freed-dev-llc/modules/turingpi//modules/addons/portainer\"\n  depends_on      = [module.metallb]\n  loadbalancer_ip = \"10.10.88.81\"\n}\n```\n\n## Examples\n\n| Example | Description |\n|---------|-------------|\n| [talos-full-stack](./examples/talos-full-stack) | Complete Talos cluster with all addons |\n| [k3s-full-stack](./examples/k3s-full-stack) | Complete K3s cluster with all addons |\n\n## Documentation\n\n| Document | Description |\n|----------|-------------|\n| [WORKFLOWS.md](./docs/WORKFLOWS.md) | Complete cluster lifecycle workflows with flowcharts |\n| [ARCHITECTURE.md](./docs/ARCHITECTURE.md) | Module architecture and dependency diagrams |\n\n## Helper Scripts\n\nHelper scripts for cluster lifecycle management are provided in the `scripts/` directory:\n\n| Script | Description |\n|--------|-------------|\n| [`cluster-preflight.sh`](./scripts/cluster-preflight.sh) | Pre-deployment validation checks |\n| [`talos-wipe.sh`](./scripts/talos-wipe.sh) | Wipe and shutdown Talos cluster |\n| [`k3s-wipe.sh`](./scripts/k3s-wipe.sh) | Wipe and shutdown K3s cluster |\n| [`find-armbian-image.sh`](./scripts/find-armbian-image.sh) | Find Armbian images, generate autoconfig for first-boot |\n\n**Wipe scripts** (`talos-wipe.sh`, `k3s-wipe.sh`) support:\n\n- `--dry-run` mode for safe testing\n- Environment variables (`TURINGPI_ENDPOINT`, `TURINGPI_USERNAME`, `TURINGPI_PASSWORD`)\n- Credential files in `~/.secrets/`\n- `--force-power-off` via BMC API\n- `--clean-terraform` for state file cleanup\n- `--log FILE` for logging to file\n\nExample usage:\n\n```bash\n# Pre-flight checks\n./scripts/cluster-preflight.sh -t talos -n 10.10.88.73,10.10.88.74,10.10.88.75,10.10.88.76 -b 10.10.88.70\n\n# Wipe Talos cluster with terraform cleanup\n./scripts/talos-wipe.sh -n 10.10.88.73,10.10.88.74,10.10.88.75,10.10.88.76 -b 10.10.88.70 --clean-terraform --force-power-off\n\n# Wipe K3s cluster\n./scripts/k3s-wipe.sh -n 10.10.88.74,10.10.88.75,10.10.88.76 -b 10.10.88.70 --clean-terraform --force-power-off\n\n# Find and list available Armbian images\n./scripts/find-armbian-image.sh --list\n\n# Find minimal trixie image URL for BMC flash\n./scripts/find-armbian-image.sh -v minimal -r trixie\n\n# Generate autoconfig for first-boot setup (password, SSH key, timezone)\n./scripts/find-armbian-image.sh --autoconfig first_run.txt \\\n    --root-password \"YourPassword\" \\\n    --ssh-key ~/.ssh/id_ed25519.pub \\\n    --timezone \"America/Chicago\"\n\n# Generate autoconfig with static IP (when DHCP reservations unavailable)\n./scripts/find-armbian-image.sh --autoconfig first_run.txt \\\n    --root-password \"YourPassword\" \\\n    --static-ip \"10.10.88.74\" \\\n    --gateway \"10.10.88.1\"\n```\n\n## Talos vs K3s\n\n| Feature | Talos | K3s (Armbian) |\n|---------|-------|---------------|\n| Security | Immutable, API-only | Standard Linux |\n| Updates | Image-based | apt + k3s script |\n| Access | talosctl | SSH |\n| Customization | Limited (secure) | Full Linux |\n| Best for | Production, security-focused | Development, flexibility |\n\n### Addon Module Configuration by Platform\n\n| Setting | Talos | K3s/Armbian |\n|---------|-------|-------------|\n| `privileged_namespace` | `true` (PSA enforced) | `false` (PSA not enforced) |\n| `talos_extensions_installed` | `true` (after custom image) | `true` (after `apt install open-iscsi`) |\n| Longhorn prerequisites | Custom Talos image with extensions | `apt install open-iscsi nfs-common` |\n\n### Storage Considerations (32GB eMMC)\n\nLonghorn reserves ~30% of disk space. For eMMC-constrained nodes:\n\n```hcl\nmodule \"monitoring\" {\n  source = \"freed-dev-llc/modules/turingpi//modules/addons/monitoring\"\n\n  grafana_admin_password  = var.grafana_password\n  prometheus_storage_size = \"10Gi\"  # Reduced from default 20Gi\n}\n```\n\n## Requirements\n\n- Terraform \u003e= 1.0\n- [Turing Pi Provider](https://github.com/freed-dev-llc/terraform-provider-turingpi) ~\u003e 1.5 (for flashing)\n- [Talos Provider](https://github.com/siderolabs/terraform-provider-talos) \u003e= 0.7 (for Talos clusters)\n\n## Verified Configurations\n\nTested and verified on v1.6.0 (modules) / v1.5.1 (provider):\n\n- K3s v1.31.4+k3s1 on Armbian 26.2.0-trunk.151 (trixie)\n- BMC firmware v2.3.4\n- MetalLB L2 mode with IP pool assignment\n- Longhorn with 2-replica volumes\n- Prometheus/Grafana with persistent storage\n- Ingress-NGINX with LoadBalancer service\n\n## License\n\nApache License 2.0\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreed-dev-llc%2Fterraform-turingpi-modules","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffreed-dev-llc%2Fterraform-turingpi-modules","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreed-dev-llc%2Fterraform-turingpi-modules/lists"}