feat: add DOKS, managed postgres/redis, WAF rules, external-dns

terraform/variables.tf

@@ -18,7 +18,7 @@ variable "region" {
 variable "droplet_size" {
   description = "Droplet size slug"
   type        = string
-  default     = "s-1vcpu-2gb"
+  default     = "s-2vcpu-4gb"
 }
 
 variable "cloudflare_api_token" {
@@ -37,3 +37,49 @@ variable "admin_ip" {
   type        = string
   sensitive   = true
 }
+
+# ─── DOKS ─────────────────────────────────────────────────────────────────────
+
+variable "k8s_version" {
+  description = "Kubernetes version slug (run: doctl kubernetes options versions)"
+  type        = string
+  default     = "1.32.13-do.2"
+}
+
+variable "k8s_node_size" {
+  description = "Node pool droplet size"
+  type        = string
+  default     = "s-2vcpu-4gb"
+}
+
+variable "k8s_min_nodes" {
+  description = "Minimum nodes in the pool"
+  type        = number
+  default     = 1
+}
+
+variable "k8s_max_nodes" {
+  description = "Maximum nodes in the pool"
+  type        = number
+  default     = 3
+}
+
+variable "cluster_lb_ip" {
+  description = "IP of the DOKS ingress load balancer (set after first cluster apply)"
+  type        = string
+  default     = ""
+}
+
+# ─── Managed databases ────────────────────────────────────────────────────────
+
+variable "postgres_size" {
+  description = "Managed Postgres cluster size slug"
+  type        = string
+  default     = "db-s-1vcpu-1gb"
+}
+
+variable "redis_size" {
+  description = "Managed Valkey/Redis cluster size slug"
+  type        = string
+  default     = "db-s-1vcpu-1gb"
+}