Skip to content

chore: remove dead OpenShift DNS records#10

Merged
xnoto merged 1 commit intomainfrom
chore/purge-openshift-dns
Apr 30, 2026
Merged

chore: remove dead OpenShift DNS records#10
xnoto merged 1 commit intomainfrom
chore/purge-openshift-dns

Conversation

@xnoto
Copy link
Copy Markdown
Contributor

@xnoto xnoto commented Apr 30, 2026
edited
Loading

Summary

The cluster is now k3s; the OpenShift IngressController + API server + image-registry endpoints don't exist anymore. External traffic flows through Cloudflare Tunnels (managed in `kustomize-cluster`). The four `cloudflare_dns_record` CNAMEs that pointed at `ltc.makeitwork.cloud` are dead:

  • `api` (api.makeitwork.cloud)
  • `apps` (apps.makeitwork.cloud)
  • `apps_wildcard` (*.apps.makeitwork.cloud)
  • `openshift_image_registry` (default-route-openshift-image-registry.makeitwork.cloud)

After apply, the corresponding Cloudflare DNS records are deleted. Nothing in the active cluster references these names.

Test plan

  • Plan output shows 4 `cloudflare_dns_record` deletions and no other changes
  • After apply, `dig api.makeitwork.cloud` and the three siblings return NXDOMAIN
  • kubectl access via `k3s.makeitwork.cloud` (Cloudflare Access TCP tunnel) still works

🤖 Generated with Claude Code

@xnoto @claude
chore: remove dead OpenShift DNS records
8b2307c 
api / apps / *.apps / default-route-openshift-image-registry all
pointed to ltc.makeitwork.cloud for OpenShift Local routing — that
pattern is gone, the cluster is now k3s and every external entry
point is a Cloudflare Tunnel managed in the cluster repo.

Removes 4 cloudflare_dns_record resources from cf-dns.tf and
regenerates the terraform-docs README.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 30, 2026

OpenTofu Plan

OpenTofu will perform the following actions:

  # cloudflare_dns_record.api will be destroyed
  # (because cloudflare_dns_record.api is not in configuration)
  - resource "cloudflare_dns_record" "api" {
      - content     = "ltc.makeitwork.cloud" -> null
      - created_on  = "2025-01-09T19:01:58Z" -> null
      - id          = "1f7873b63ad9449b31efb708fb1395a1" -> null
      - meta        = jsonencode({})
      - modified_on = "2025-01-09T19:01:58Z" -> null
      - name        = "api.makeitwork.cloud" -> null
      - proxiable   = true -> null
      - proxied     = false -> null
      - settings    = {
          - flatten_cname = false -> null
          - ipv4_only     = false -> null
          - ipv6_only     = false -> null
        } -> null
      - tags        = [] -> null
      - ttl         = 1 -> null
      - type        = "CNAME" -> null
      - zone_id     = (sensitive value) -> null
    }

  # cloudflare_dns_record.apps will be destroyed
  # (because cloudflare_dns_record.apps is not in configuration)
  - resource "cloudflare_dns_record" "apps" {
      - content     = "ltc.makeitwork.cloud" -> null
      - created_on  = "2025-01-09T19:03:12Z" -> null
      - id          = "c455a30adc95977977f99c48ace6caaa" -> null
      - meta        = jsonencode({})
      - modified_on = "2025-01-09T19:03:12Z" -> null
      - name        = "apps.makeitwork.cloud" -> null
      - proxiable   = true -> null
      - proxied     = false -> null
      - settings    = {
          - flatten_cname = false -> null
          - ipv4_only     = false -> null
          - ipv6_only     = false -> null
        } -> null
      - tags        = [] -> null
      - ttl         = 1 -> null
      - type        = "CNAME" -> null
      - zone_id     = (sensitive value) -> null
    }

  # cloudflare_dns_record.apps_wildcard will be destroyed
  # (because cloudflare_dns_record.apps_wildcard is not in configuration)
  - resource "cloudflare_dns_record" "apps_wildcard" {
      - content     = "ltc.makeitwork.cloud" -> null
      - created_on  = "2025-01-09T19:05:17Z" -> null
      - id          = "e88358018eb36c1ba9b24bc472293636" -> null
      - meta        = jsonencode({})
      - modified_on = "2025-01-09T19:05:17Z" -> null
      - name        = "*.apps.makeitwork.cloud" -> null
      - proxiable   = true -> null
      - proxied     = false -> null
      - settings    = {
          - flatten_cname = false -> null
          - ipv4_only     = false -> null
          - ipv6_only     = false -> null
        } -> null
      - tags        = [] -> null
      - ttl         = 1 -> null
      - type        = "CNAME" -> null
      - zone_id     = (sensitive value) -> null
    }

  # cloudflare_dns_record.openshift_image_registry will be destroyed
  # (because cloudflare_dns_record.openshift_image_registry is not in configuration)
  - resource "cloudflare_dns_record" "openshift_image_registry" {
      - content     = "ltc.makeitwork.cloud" -> null
      - created_on  = "2025-01-09T19:07:11Z" -> null
      - id          = "065a8288c834b0a9e6edf1f09009ddbc" -> null
      - meta        = jsonencode({})
      - modified_on = "2025-01-09T19:07:11Z" -> null
      - name        = "default-route-openshift-image-registry.makeitwork.cloud" -> null
      - proxiable   = true -> null
      - proxied     = false -> null
      - settings    = {
          - flatten_cname = false -> null
          - ipv4_only     = false -> null
          - ipv6_only     = false -> null
        } -> null
      - tags        = [] -> null
      - ttl         = 1 -> null
      - type        = "CNAME" -> null
      - zone_id     = (sensitive value) -> null
    }

Plan: 0 to add, 0 to change, 4 to destroy.

@xnoto xnoto self-assigned this Apr 30, 2026
@xnoto xnoto merged commit 3c35326 into main Apr 30, 2026
3 checks passed
@xnoto xnoto deleted the chore/purge-openshift-dns branch April 30, 2026 16:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@xnoto xnoto

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@xnoto