feat: add Oracle Cloud Infrastructure (OCI) template

aybanda · aybanda · commit 31c802f605db · 2025-07-16T13:06:02.000+05:30
diff --git a/.icons/oci.svg b/.icons/oci.svg
@@ -0,0 +1,13 @@
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" id="Layer_1" x="0px" y="0px" viewBox="0 0 304 182" style="enable-background:new 0 0 304 182;" xml:space="preserve">
+<style type="text/css">
+	.st0{fill:#fff;}
+	.st1{fill-rule:evenodd;clip-rule:evenodd;fill:#FF9900;}
+</style>
+<g>
+	<path class="st0" d="M86.4,66.4c0,3.7,0.4,6.7,1.1,8.9c0.8,2.2,1.8,4.6,3.2,7.2c0.5,0.8,0.7,1.6,0.7,2.3c0,1-0.6,2-1.9,3l-6.3,4.2   c-0.9,0.6-1.8,0.9-2.6,0.9c-1,0-2-0.5-3-1.4C76.2,90,75,88.4,74,86.8c-1-1.7-2-3.6-3.1-5.9c-7.8,9.2-17.6,13.8-29.4,13.8   c-8.4,0-15.1-2.4-20-7.2c-4.9-4.8-7.4-11.2-7.4-19.2c0-8.5,3-15.4,9.1-20.6c6.1-5.2,14.2-7.8,24.5-7.8c3.4,0,6.9,0.3,10.6,0.8   c3.7,0.5,7.5,1.3,11.5,2.2v-7.3c0-7.6-1.6-12.9-4.7-16c-3.2-3.1-8.6-4.6-16.3-4.6c-3.5,0-7.1,0.4-10.8,1.3c-3.7,0.9-7.3,2-10.8,3.4   c-1.6,0.7-2.8,1.1-3.5,1.3c-0.7,0.2-1.2,0.3-1.6,0.3c-1.4,0-2.1-1-2.1-3.1v-4.9c0-1.6,0.2-2.8,0.7-3.5c0.5-0.7,1.4-1.4,2.8-2.1   c3.5-1.8,7.7-3.3,12.6-4.5c4.9-1.3,10.1-1.9,15.6-1.9c11.9,0,20.6,2.7,26.2,8.1c5.5,5.4,8.3,13.6,8.3,24.6V66.4z M45.8,81.6   c3.3,0,6.7-0.6,10.3-1.8c3.6-1.2,6.8-3.4,9.5-6.4c1.6-1.9,2.8-4,3.4-6.4c0.6-2.4,1-5.3,1-8.7v-4.2c-2.9-0.7-6-1.3-9.2-1.7   c-3.2-0.4-6.3-0.6-9.4-0.6c-6.7,0-11.6,1.3-14.9,4c-3.3,2.7-4.9,6.5-4.9,11.5c0,4.7,1.2,8.2,3.7,10.6   C37.7,80.4,41.2,81.6,45.8,81.6z M126.1,92.4c-1.8,0-3-0.3-3.8-1c-0.8-0.6-1.5-2-2.1-3.9L96.7,10.2c-0.6-2-0.9-3.3-0.9-4   c0-1.6,0.8-2.5,2.4-2.5h9.8c1.9,0,3.2,0.3,3.9,1c0.8,0.6,1.4,2,2,3.9l16.8,66.2l15.6-66.2c0.5-2,1.1-3.3,1.9-3.9c0.8-0.6,2.2-1,4-1   h8c1.9,0,3.2,0.3,4,1c0.8,0.6,1.5,2,1.9,3.9l15.8,67l17.3-67c0.6-2,1.3-3.3,2-3.9c0.8-0.6,2.1-1,3.9-1h9.3c1.6,0,2.5,0.8,2.5,2.5   c0,0.5-0.1,1-0.2,1.6c-0.1,0.6-0.3,1.4-0.7,2.5l-24.1,77.3c-0.6,2-1.3,3.3-2.1,3.9c-0.8,0.6-2.1,1-3.8,1h-8.6c-1.9,0-3.2-0.3-4-1   c-0.8-0.7-1.5-2-1.9-4L156,23l-15.4,64.4c-0.5,2-1.1,3.3-1.9,4c-0.8,0.7-2.2,1-4,1H126.1z M254.6,95.1c-5.2,0-10.4-0.6-15.4-1.8   c-5-1.2-8.9-2.5-11.5-4c-1.6-0.9-2.7-1.9-3.1-2.8c-0.4-0.9-0.6-1.9-0.6-2.8v-5.1c0-2.1,0.8-3.1,2.3-3.1c0.6,0,1.2,0.1,1.8,0.3   c0.6,0.2,1.5,0.6,2.5,1c3.4,1.5,7.1,2.7,11,3.5c4,0.8,7.9,1.2,11.9,1.2c6.3,0,11.2-1.1,14.6-3.3c3.4-2.2,5.2-5.4,5.2-9.5   c0-2.8-0.9-5.1-2.7-7c-1.8-1.9-5.2-3.6-10.1-5.2L246,52c-7.3-2.3-12.7-5.7-16-10.2c-3.3-4.4-5-9.3-5-14.5c0-4.2,0.9-7.9,2.7-11.1   c1.8-3.2,4.2-6,7.2-8.2c3-2.3,6.4-4,10.4-5.2c4-1.2,8.2-1.7,12.6-1.7c2.2,0,4.5,0.1,6.7,0.4c2.3,0.3,4.4,0.7,6.5,1.1   c2,0.5,3.9,1,5.7,1.6c1.8,0.6,3.2,1.2,4.2,1.8c1.4,0.8,2.4,1.6,3,2.5c0.6,0.8,0.9,1.9,0.9,3.3v4.7c0,2.1-0.8,3.2-2.3,3.2   c-0.8,0-2.1-0.4-3.8-1.2c-5.7-2.6-12.1-3.9-19.2-3.9c-5.7,0-10.2,0.9-13.3,2.8c-3.1,1.9-4.7,4.8-4.7,8.9c0,2.8,1,5.2,3,7.1   c2,1.9,5.7,3.8,11,5.5l14.2,4.5c7.2,2.3,12.4,5.5,15.5,9.6c3.1,4.1,4.6,8.8,4.6,14c0,4.3-0.9,8.2-2.6,11.6   c-1.8,3.4-4.2,6.4-7.3,8.8c-3.1,2.5-6.8,4.3-11.1,5.6C264.4,94.4,259.7,95.1,254.6,95.1z"/>
+	<g>
+		<path class="st1" d="M273.5,143.7c-32.9,24.3-80.7,37.2-121.8,37.2c-57.6,0-109.5-21.3-148.7-56.7c-3.1-2.8-0.3-6.6,3.4-4.4    c42.4,24.6,94.7,39.5,148.8,39.5c36.5,0,76.6-7.6,113.5-23.2C274.2,133.6,278.9,139.7,273.5,143.7z"/>
+		<path class="st1" d="M287.2,128.1c-4.2-5.4-27.8-2.6-38.5-1.3c-3.2,0.4-3.7-2.4-0.8-4.5c18.8-13.2,49.7-9.4,53.3-5    c3.6,4.5-1,35.4-18.6,50.2c-2.7,2.3-5.3,1.1-4.1-1.9C282.5,155.7,291.4,133.4,287.2,128.1z"/>
+	</g>
+</g>
+</svg>
diff --git a/registry/aybanda/templates/oci-linux/README.md b/registry/aybanda/templates/oci-linux/README.md
@@ -0,0 +1,163 @@
+---
+display_name: Oracle Cloud Infrastructure (Linux)
+description: Provision Oracle Cloud Infrastructure VMs as Coder workspaces
+icon: ../../../../.icons/oci.svg
+maintainer_github: coder
+verified: false
+tags: [vm, linux, oci, oracle]
+---
+
+# Remote Development on Oracle Cloud Infrastructure (Linux)
+
+Provision Oracle Cloud Infrastructure (OCI) VMs as [Coder workspaces](https://coder.com/docs/workspaces) with this example template.
+
+## Prerequisites
+
+### Authentication
+
+This template assumes that coderd is run in an environment that is authenticated with Oracle Cloud Infrastructure. The recommended authentication methods are:
+
+1. **Instance Principal** (Recommended for production): Run Coder on an OCI instance with proper IAM policies
+2. **API Key**: Set environment variables `OCI_TENANCY_OCID`, `OCI_USER_OCID`, `OCI_FINGERPRINT`, and `OCI_PRIVATE_KEY_PATH`
+3. **Configuration File**: Use `~/.oci/config` file
+
+For detailed authentication setup, see the [OCI Terraform provider documentation](https://registry.terraform.io/providers/oracle/oci/latest/docs#authentication).
+
+### Required IAM Policies
+
+The following IAM policies are required for the template to work:
+
+```json
+{
+  "statements": [
+    {
+      "effect": "Allow",
+      "action": [
+        "core:instance:create",
+        "core:instance:delete",
+        "core:instance:get",
+        "core:instance:update",
+        "core:volume:create",
+        "core:volume:delete",
+        "core:volume:get",
+        "core:volume:update",
+        "core:volumeAttachment:create",
+        "core:volumeAttachment:delete",
+        "core:volumeAttachment:get",
+        "core:vcn:create",
+        "core:vcn:delete",
+        "core:vcn:get",
+        "core:vcn:update",
+        "core:subnet:create",
+        "core:subnet:delete",
+        "core:subnet:get",
+        "core:subnet:update",
+        "core:internetGateway:create",
+        "core:internetGateway:delete",
+        "core:internetGateway:get",
+        "core:internetGateway:update",
+        "core:routeTable:create",
+        "core:routeTable:delete",
+        "core:routeTable:get",
+        "core:routeTable:update",
+        "core:securityList:create",
+        "core:securityList:delete",
+        "core:securityList:get",
+        "core:securityList:update",
+        "core:image:get",
+        "identity:compartment:get"
+      ],
+      "resource": "*"
+    }
+  ]
+}
+```
+
+## Architecture
+
+This template provisions the following resources:
+
+- **OCI VM** (ephemeral, deleted on stop)
+- **OCI Block Volume** (persistent, mounted to `/home/coder`)
+- **VCN with Internet Gateway** (for network connectivity)
+- **Security List** (with SSH, HTTP, and HTTPS access)
+
+The template uses Ubuntu 22.04 LTS as the base image and includes:
+
+- Code Server for web-based development
+- JetBrains Gateway for IDE access
+- Persistent home directory storage
+- Automatic Coder agent installation
+
+## Usage
+
+1. **Set up authentication** using one of the methods above
+2. **Create a compartment** in your OCI tenancy
+3. **Deploy the template** with your compartment OCID
+4. **Optionally provide an SSH public key** for direct SSH access
+
+### Template Variables
+
+- `compartment_ocid`: The OCID of your OCI compartment
+- `ssh_public_key`: (Optional) SSH public key for direct access
+
+### Instance Shapes
+
+The template supports various OCI instance shapes:
+
+- **VM.Standard.A1.Flex**: ARM-based flexible shapes (1-4 OCPUs, 6-24 GB RAM)
+- **VM.Standard.E2.1.Micro**: Cost-effective micro instances
+- **VM.Standard.E2.1.Small**: Small instances for development
+- **VM.Standard.E2.1.Medium**: Medium instances for larger workloads
+- **VM.Standard.E3.Flex**: AMD-based flexible shapes
+
+### Regions
+
+The template supports all major OCI regions:
+
+- **Americas**: US East (Ashburn), US West (Phoenix), Canada Southeast (Montreal)
+- **Europe**: UK South (London), Germany Central (Frankfurt), Netherlands Northwest (Amsterdam), Switzerland North (Zurich)
+- **Asia Pacific**: Japan East (Tokyo), Japan Central (Osaka), South Korea Central (Seoul), Australia Southeast (Sydney), India West (Mumbai), India South (Hyderabad)
+- **Middle East**: Saudi Arabia West (Jeddah), UAE East (Dubai)
+- **South America**: Brazil East (São Paulo), Chile (Santiago)
+
+## Cost Optimization
+
+- Use **VM.Standard.A1.Flex** shapes for cost-effective ARM-based instances
+- Choose **VM.Standard.E2.1.Micro** for minimal development workloads
+- Consider **VM.Standard.E3.Flex** for AMD-based workloads requiring more memory
+- Use smaller home disk sizes (50 GB) for basic development
+- Stop workspaces when not in use to avoid charges
+
+## Security
+
+- Instances are created with public IP addresses for Coder access
+- SSH access is restricted to the provided public key
+- Security lists allow only necessary ports (22, 80, 443)
+- All resources are tagged with `Coder_Provisioned = true`
+
+## Troubleshooting
+
+### Common Issues
+
+1. **Authentication Errors**: Ensure proper OCI authentication is configured
+2. **Permission Errors**: Verify IAM policies are correctly set
+3. **Network Issues**: Check VCN and security list configuration
+4. **Volume Attachment**: Ensure the home volume is properly attached
+
+### Debugging
+
+- Check OCI console for instance status and logs
+- Verify network connectivity and security list rules
+- Review Terraform logs for detailed error messages
+
+## Contributing
+
+This template is designed to be a starting point! Edit the Terraform to extend the template to support your use case.
+
+For issues and contributions, please visit the [Coder Registry repository](https://github.com/coder/registry).
+
+## Contributors
+
+- [aybanda](https://github.com/aybanda)
+
diff --git a/registry/aybanda/templates/oci-linux/cloud-init/cloud-config.yaml.tftpl b/registry/aybanda/templates/oci-linux/cloud-init/cloud-config.yaml.tftpl
@@ -0,0 +1,39 @@
+#cloud-config
+hostname: ${hostname}
+users:
+  - name: ${linux_user}
+    uid: 1000
+    gid: 1000
+    groups: sudo
+    packages:
+      - curl
+    shell: /bin/bash
+    sudo: ['ALL=(ALL) NOPASSWD:ALL']
+    ssh_authorized_keys:
+      - ${ssh_public_key}
+
+# Update package list and install basic packages
+package_update: true
+package_upgrade: true
+packages:
+  - curl
+  - wget
+  - git
+  - unzip
+  - software-properties-common
+  - apt-transport-https
+  - ca-certificates
+  - gnupg
+  - lsb-release
+
+# Write the Coder agent token to a file
+write_files:
+  - path: /opt/coder/init.env
+    content: |
+      CODER_AGENT_TOKEN=${coder_agent_token}
+    owner: ${linux_user}:${linux_user}
+    permissions: '0600'
+
+# Run commands after package installation
+runcmd:
+  - systemctl enable --now coder-agent 
diff --git a/registry/aybanda/templates/oci-linux/cloud-init/userdata.sh.tftpl b/registry/aybanda/templates/oci-linux/cloud-init/userdata.sh.tftpl
@@ -0,0 +1,48 @@
+#!/bin/bash
+set -e
+
+# Set hostname
+hostnamectl set-hostname ${hostname}
+
+# Create coder user if it doesn't exist
+if ! id "${linux_user}" &>/dev/null; then
+    useradd -m -s /bin/bash -G sudo ${linux_user}
+    echo "${linux_user} ALL=(ALL) NOPASSWD:ALL" >> /etc/sudoers
+fi
+
+# Create necessary directories
+mkdir -p /opt/coder
+mkdir -p /home/${linux_user}
+
+# Set up SSH key if provided
+if [ -n "${ssh_public_key}" ]; then
+    mkdir -p /home/${linux_user}/.ssh
+    echo "${ssh_public_key}" >> /home/${linux_user}/.ssh/authorized_keys
+    chown -R ${linux_user}:${linux_user} /home/${linux_user}/.ssh
+    chmod 700 /home/${linux_user}/.ssh
+    chmod 600 /home/${linux_user}/.ssh/authorized_keys
+fi
+
+# Mount home volume if it exists
+if [ -b /dev/sdb ]; then
+    # Check if the disk is already formatted
+    if ! blkid /dev/sdb; then
+        mkfs.ext4 /dev/sdb
+    fi
+    
+    # Create mount point and mount
+    mkdir -p /home/${linux_user}
+    mount /dev/sdb /home/${linux_user}
+    
+    # Add to fstab for persistence
+    echo "/dev/sdb /home/${linux_user} ext4 defaults 0 2" >> /etc/fstab
+    
+    # Set ownership
+    chown -R ${linux_user}:${linux_user} /home/${linux_user}
+fi
+
+# Download and install Coder agent
+curl -fsSL https://coder.com/install.sh | sh
+
+# Start the Coder agent
+systemctl enable --now coder-agent 
diff --git a/registry/aybanda/templates/oci-linux/main.tf b/registry/aybanda/templates/oci-linux/main.tf
