###########
# pre-reqs
# terraform login
# export TERRAFORM_CONFIG=$HOME/.terraform.d/credentials.tfrc.json"
##########

terraform {
  required_version = ">= 1.0.1"

}

provider "tfe" {
  hostname = var.tfe_hostname
}

locals {
  delimiter        = "-"
  prefix           = "aws-ia"
  random_workspace = "w-${local.prefix}${local.delimiter}${random_string.rand6.result}"
  random_org       = "o-${local.prefix}${local.delimiter}${random_string.rand8.result}"
}

resource "random_string" "rand8" {
  length  = 8
  special = false
  upper   = false
}
resource "random_string" "rand6" {
  length  = 6
  special = false
  upper   = false
}

resource "tfe_organization" "tf-org" {
  name  = var.tfe_organization == "" ? local.random_org : var.tfe_organization
  email = var.tfe_email == "" ? "someone@mycompany.com" : var.tfe_email
  count = var.tfe_organization != "" ? 0 : 1
}

resource "tfe_workspace" "tf-ws" {
  depends_on        = [tfe_organization.tf-org]
  name              = var.tfe_workspace == "" ? local.random_workspace : var.tfe_workspace
  organization      = var.tfe_organization != "" ? var.tfe_organization : tfe_organization.tf-org[0].name
  working_directory = var.working_directory
}

resource "tfe_variable" "AWS_SECRET_ACCESS_KEY" {
  key          = "AWS_SECRET_ACCESS_KEY"
  value        = var.AWS_SECRET_ACCESS_KEY
  sensitive    = true
  category     = "env"
  workspace_id = tfe_workspace.tf-ws.id
  description  = "AWS_SECRET_ACCESS_KEY"
}

resource "tfe_variable" "AWS_ACCESS_KEY_ID" {
  key          = "AWS_ACCESS_KEY_ID"
  value        = var.AWS_ACCESS_KEY_ID
  category     = "env"
  workspace_id = tfe_workspace.tf-ws.id
  description  = "AWS_ACCESS_KEY_ID"
}
resource "tfe_variable" "AWS_SESSION_TOKEN" {
  count        = var.AWS_SESSION_TOKEN == "" ? 0 : 1
  key          = "AWS_SESSION_TOKEN"
  value        = var.AWS_SESSION_TOKEN
  category     = "env"
  workspace_id = tfe_workspace.tf-ws.id
  description  = "AWS_SESSION_TOKEN"
  sensitive    = true
}
resource "tfe_variable" "region" {
  key          = "region"
  value        = var.region
  category     = "terraform"
  workspace_id = tfe_workspace.tf-ws.id
  description  = "AWS Region"
}

resource "local_file" "backend_file" {
  filename = "backend.hcl"
  content  = <<EOF
workspaces { name = "${tfe_workspace.tf-ws.name}" }
hostname = "${var.tfe_hostname}"
organization = "${tfe_workspace.tf-ws.organization}"
EOF
}