Terraform

Source source required type: string

The source directory containing the Terraform config to provision.

Network attaches the container to an existing network defined in a separate stanza. This block can be specified multiple times to attach the container to multiple networks.

Version version type: string

The version of Terraform to use.

WorkingDirectory working_directory type: string

The working directory to run the Terraform commands.

Environment environment type: map[string]string

Environment variables to set.

Variables variables type: map[string]any

Terraform variables to pass to Terraform.

A volume allows you to specify a local volume which is mounted to the container when it is created. This stanza can be specified multiple times.

Meta ID meta.id string

The full ID of the resource e.g. `resource.type.name`. This is computed from the full resource path:

Meta Type meta.type string

The type of the resource. This taken from the type label of the resource definition.

Meta Name meta.name string

The name of the resource. This taken from the name label of the resource definition.

Output output type: map[string]any

Any outputs defined in the Terraform configuration will be exposed as output values on the Terraform resource.

ApplyOutput apply_output type: string

Console output from the Terraform apply.

ID id required type: string

ID of the network to attach the container to, specified in reference format. e.g. to attach to a network called `cloud`.

IPAddress ip_address type: string

Static IP address to assign container for the network, the ip address must be within range defined by the network subnet. If this parameter is omitted an IP address will be automatically assigned.

Aliases aliases type: []string

Aliases allow alternate names to specified for the container. Aliases can be used to reference a container across the network, the container will respond to ping and other network resolution using the primary assigned name `[name].container.shipyard.run` and the aliases.

Name name type: string

Name will equal the name of the network as created by jumppad.

AssignedAddress assigned_address type: string

`assigned_address` will equal the assigned IP address for the network. This will equal ip_address if set; otherwise, this is the automatically assigned IP address.

Source source required type: string

The source volume to mount in the container, can be specified as a relative `./` or absolute path `/usr/local/bin`. Relative paths are relative to the file declaring the container.

Destination destination required type: string

The destination in the container to mount the volume to, must be an absolute path.

Type type type: string

The type of the mount, can be one of the following values:

• bind: bind the source path to the destination path in the container

• volume: source is a Docker volume

• tmpfs: create a temporary filesystem

ReadOnly read_only type: bool

Whether or not the volume is read only.

BindPropagation bind_propagation type: string

Configures bind propagation for Docker volume mounts, only applies to bind mounts, can be one of the following values:

• shared

• slave

• private

• rslave

• rprivate

For more information please see the Docker documentation https://docs.docker.com/storage/bind-mounts/#configure-bind-propagation

BindPropagationNonRecursive bind_propagation_non_recursive type: bool

Configures recursiveness of the bind mount.

By default Docker mounts with the equivalent of mount --rbind meaning that mounts below the the source directory are visible in the container. or instance running docker run --rm --mount type=bind,src=/,target=/host,readonly busybox will make /run of the host available as/host/run in the container. To make matters even worse it will be writable (since only the toplevel bind is set readonly, not the children).

If bind_propagation_non_recursive is set to true then the container will only see an empty /host/run, meaning thetmpfs which is typically mounted to /run on the host is not propagated into the container.

SelinuxRelabel selinux_relabel type: string

Configures Selinux relabeling for the container (usually specified as :z or :Z) and can be one of the following values:

• shared (Equivalent to :z)

• private (Equivalent to :Z)