services:
  terraform:
    image: hashicorp/terraform:latest
    container_name: terraform-worker
    # We mount the current folder into the container so it can see your .tf files
    volumes:
      - .:/app
    working_dir: /app
    # We pass your Komodo secrets into the container
    environment:
      - TF_VAR_pve_endpoint=${TF_VAR_pve_endpoint}
      - TF_VAR_pve_token_id=${TF_VAR_pve_token_id}
      - TF_VAR_pve_token_secret=${TF_VAR_pve_token_secret}
    # This prevents the container from trying to run a service; 
    # we want to trigger commands manually or via Komodo Actions.
    entrypoint: ["/bin/sh", "-c", "sleep infinity"]