Add infra setup: Terraform for DO droplet + Cloudflare DNS, Ansible roles for Gitea, Vaultwarden, and Gitea runner

infra/terraform/variables.tf

@@ -0,0 +1,33 @@
+variable "do_token" {
+  description = "DigitalOcean API token"
+  type        = string
+  sensitive   = true
+}
+
+variable "ssh_key_name" {
+  description = "Name of the SSH key uploaded to DigitalOcean"
+  type        = string
+}
+
+variable "region" {
+  description = "DigitalOcean region"
+  type        = string
+  default     = "nyc3"
+}
+
+variable "droplet_size" {
+  description = "Droplet size slug"
+  type        = string
+  default     = "s-1vcpu-2gb"
+}
+
+variable "cloudflare_api_token" {
+  description = "Cloudflare API token (needs Zone:DNS:Edit permission)"
+  type        = string
+  sensitive   = true
+}
+
+variable "domain" {
+  description = "Root domain managed in Cloudflare (e.g. example.com)"
+  type        = string
+}