[User Story] Add OpenTofu module variables for Ghost config #87
Description
Story Summary
As a platform engineer, I want to add OpenTofu variables for the non-secret Ghost configuration, so that domain names, paths, and mail settings can be passed to the instance module.
✅ Acceptance Criteria
-
ghost_domainvariable added (string, required) - Ghost site domain -
ghost_admin_domainvariable added (string, required) - Ghost admin panel domain -
ghost_versionvariable added (string, default "6-alpine") - Ghost Docker image tag -
mail_smtp_hostvariable added (string, default "smtp.mailgun.org") - SMTP host -
mail_smtp_uservariable added (string, required) - SMTP username -
admin_ipvariable added (string, required) - Admin workstation IP for Caddy ACL - Variables documented with descriptions
- No sensitive values accepted (passwords, tokens)
📝 Additional Context
- Design: These variables are non-secret configuration that's safe to pass through OpenTofu
- Secrets (DATABASE_PASSWORD, HEALTH_CHECK_TOKEN, etc.) remain on block storage
- Some variables may already exist (ghost_url) and can be reused or renamed
📦 Definition of Ready
- Acceptance criteria defined
- No unresolved external dependencies
- Story is estimated
- Team has necessary skills and access
- Priority is clear
- Business value understood
✅ Definition of Done
- All acceptance criteria met
- OpenTofu syntax valid (
tofu validatepasses) - Peer-reviewed
- Variables properly typed and documented