feat: add Oracle Cloud Infrastructure (OCI) template (#201) #222
Conversation
| @matifali I have attached a terminal demo proving my OCI template is valid, documented, and pushed to GitHub; due to local Coder provisioner issues, I’m unable to record a full UI workspace creation—could a reviewer please test the import and workspace creation? Thank you! |
Rather than a demo of you running the terraform initialization and validation, it would be better to take this template and push it to your coder deployment, in which you could show a workspace being created from this template. |
aybanda force-pushed the feature/oci-template branch from 7281518 to c129148 Compare 
aybanda force-pushed the feature/oci-template branch from c129148 to 31c802f Compare 
| @aybanda Any update on this? |
…arameter - Fix duplicate option values for VM.Standard.A1.Flex and VM.Standard.E3.Flex shapes - Add dynamic shape configuration handling for flexible shapes - Implement proper OCPU and memory parsing from parameter values - Ensure unique option values while maintaining descriptive names - Template now passes terraform validation without errors
Demo Status Update@DevelopmentCats @matifali I wanted to show you guys the OCI template working in a real Coder deployment, but I'm having trouble with my OCI account. So I put together a different kind of demo that shows what I've built. What I've DoneI've created a complete OCI template that:
The template is about 500 lines of Terraform config plus comprehensive docs. I've tested it locally and it validates perfectly - no syntax errors or configuration issues. The Demo VideoSince I can't get OCI access, I recorded a walkthrough showing:
What I NeedCould someone with an OCI account please test this template? I'd love to see it actually create a workspace, but I just can't get past Oracle's signup process. The template URL is: You'd just need to:
ConclusionI think this template is solid and ready to go. It follows all the Coder patterns I've seen in other templates, has proper error handling, and includes everything needed for production use. The only missing piece is someone with OCI access to give it a real test. If no one can test it right now, I'm happy to provide more detailed code walkthroughs or make any adjustments needed. Thanks for taking a look! Untitled.mov |
aybanda force-pushed the feature/oci-template branch from 9d58583 to cea6770 Compare | Im signing up for an account now. Ill update and let you know how it goes |
| @aybanda its taking a bit for me to get the activation email for the account. Can you also take a look at your changes in the PR. you currently have changes made to other coder modules included in this PR which we do not want. |
aybanda force-pushed the feature/oci-template branch from cea6770 to 9bc4073 Compare
I've fixed it – the PR now only includes the intended changes. |
There was a problem hiding this comment.
This is an aws logo not an oci logo. But Oracle does have complicated legal standards for logo usage rights.
There was a problem hiding this comment.
we can just go ahead and use the OCI logo if you can go ahead and update this.
There was a problem hiding this comment.
Cannot use official OCI logo due to their trademark/licensing requirements, so removed icon reference entirely to avoid issues further.
There was a problem hiding this comment.
I verified this with out product team, and you can go ahead and add it back.
There was a problem hiding this comment.
This is definitely not the Oracle Logo
There was a problem hiding this comment.
This appears to be the logo that OCI is using which will probably work better for the icon anyways
https://upload.wikimedia.org/wikipedia/commons/e/e1/Oracle_Corporation_logo.svg
There was a problem hiding this comment.
@aybanda, please update the logo as per recommendation.
There was a problem hiding this comment.
Did not work for me. Even after resolving some of the issues I described above. I got
2025-09-04 09:02:10.837+05:00 Error: 401-NotAuthenticated, The required information to complete authentication was not provided or was incorrect. Suggestion: Please retry or contact support for help with service: Identity Compartments Documentation: https://registry.terraform.io/providers/oracle/oci/latest/docs/data-sources/identity_compartments API Reference: https://docs.oracle.com/iaas/api/#/en/identity/20160918/Compartment/ListCompartments Request Target: GET https://identity.us-ashburn-1.oci.oraclecloud.com/20160918/compartments?accessLevel=ACCESSIBLE&compartmentId=cid1.tenancy.oc1..aaaaaaaaigxlcgiui3lvzfa7z4cjcifkzomdsi45mt236ntq3btihom2bsiq&lifecycleState=ACTIVE Provider version: 7.16.0, released on 2025-08-27. This provider is 1 Update(s) behind to current. Service: Identity Compartments Operation Name: ListCompartments OPC request ID: 412635a3e275e2ab4d56c95ab1c852c0/9F233F34C3152E80330CC4B81E0CB733/423339ECDF1E0CF69EF4F2C31CDEBAF5 2025-09-04 09:02:10.837+05:00 on main.tf line 218, in data "oci_identity_compartments" "compartments": 2025-09-04 09:02:10.837+05:00 218: data "oci_identity_compartments" "compartments" { 2025-09-04 09:02:10.837+05:00 2025-09-04 09:02:10.837+05:00 2025-09-04 09:02:10.842+05:00 Error: 401-NotAuthenticated, The required information to complete authentication was not provided or was incorrect. Suggestion: Please retry or contact support for help with service: Identity Availability Domains Documentation: https://registry.terraform.io/providers/oracle/oci/latest/docs/data-sources/identity_availability_domains API Reference: https://docs.oracle.com/iaas/api/#/en/identity/20160918/AvailabilityDomain/ListAvailabilityDomains Request Target: GET https://identity.us-ashburn-1.oci.oraclecloud.com/20160918/availabilityDomains?compartmentId=cid1.tenancy.oc1..aaaaaaaaigxlcgiui3lvzfa7z4cjcifkzomdsi45mt236ntq3btihom2bsiq Provider version: 7.16.0, released on 2025-08-27. This provider is 1 Update(s) behind to current. Service: Identity Availability Domains Operation Name: ListAvailabilityDomains OPC request ID: b46cad642483ec528dad51f44d29a690/35273924FC2FBCC02B385D0F6C01992F/60E8E5DCDF4BF2CC7BA82CFB352F9F28 2025-09-04 09:02:10.842+05:00 on main.tf line 438, in data "oci_identity_availability_domains" "ads": 2025-09-04 09:02:10.842+05:00 438: data "oci_identity_availability_domains" "ads" { 2025-09-04 09:02:10.842+05:00 2025-09-04 09:02:10.842+05:00 2025-09-04 09:02:10.852+05:00 Error: 401-NotAuthenticated, The required information to complete authentication was not provided or was incorrect. Suggestion: Please retry or contact support for help with service: Core Images Documentation: https://registry.terraform.io/providers/oracle/oci/latest/docs/data-sources/core_images API Reference: https://docs.oracle.com/iaas/api/#/en/iaas/20160918/Image/ListImages Request Target: GET https://iaas.us-ashburn-1.oraclecloud.com/20160918/images?compartmentId=cid1.tenancy.oc1..aaaaaaaaigxlcgiui3lvzfa7z4cjcifkzomdsi45mt236ntq3btihom2bsiq&lifecycleState=AVAILABLE&operatingSystem=Canonical+Ubuntu&operatingSystemVersion=22.04&sortBy=TIMECREATED&sortOrder=DESC Provider version: 7.16.0, released on 2025-08-27. This provider is 1 Update(s) behind to current. Service: Core Images Operation Name: ListImages OPC request ID: ebc2170c48cc50e78352b08bf10404a7/CB33D3262B662EC71790B49EA6A05EFC/76FEE4481D6DD9BFA0E1964B08F00AC9 2025-09-04 09:02:10.852+05:00 on main.tf line 225, in data "oci_core_images" "ubuntu": 2025-09-04 09:02:10.852+05:00 225: data "oci_core_images" "ubuntu" { 2025-09-04 09:02:10.852+05:00 2025-09-04 09:02:10.853+05:00 === ✔ Detecting persistent resources [12054ms] ==> ⧗ Cleaning Up === ✘ Cleaning Up [17ms] === ✘ Cleaning Up [628ms] Encountered an error running "coder templates push", see "coder templates push --help" for more information error: template import provision for start: terraform plan: exit status 1 There was a problem hiding this comment.
@aybanda, please update the logo as per recommendation.
| This template assumes that coderd is run in an environment that is authenticated with Oracle Cloud Infrastructure. The recommended authentication methods are: | ||
| | ||
| 1. **Instance Principal** (Recommended for production): Run Coder on an OCI instance with proper IAM policies | ||
| 2. **API Key**: Set environment variables `OCI_TENANCY_OCID`, `OCI_USER_OCID`, `OCI_FINGERPRINT`, and `OCI_PRIVATE_KEY_PATH` |
There was a problem hiding this comment.
The user also needs to mount the key file in the coder server/provisioner container.
| variable "ssh_public_key" { | ||
| description = "SSH public key for the instance" | ||
| type = string | ||
| default = "" | ||
| } |
There was a problem hiding this comment.
This should not be required as Coder handles networking and authentication through the Coder agent.
| variable "compartment_ocid" { | ||
| description = "The OCID of the compartment to create resources in" | ||
| type = string | ||
| } |
There was a problem hiding this comment.
Can we make this optional and default to the root compartment, which is equivalent to the tenancy OCID. https://docs.oracle.com/en-us/iaas/Content/dev/terraform/configuring.htm#env-export-source
| name = "instance_shape" | ||
| display_name = "Instance Shape" | ||
| description = "What instance shape should your workspace use?" | ||
| default = "VM.Standard.A1.Flex" |
There was a problem hiding this comment.
default should be one of the options.
2025-09-03 11:50:24.065+05:00 Error: Default value must be a valid option 2025-09-03 11:50:24.066+05:00 on main.tf line 126, in data "coder_parameter" "instance_shape": 2025-09-03 11:50:24.066+05:00 126: default = "VM.Standard.A1.Flex" 2025-09-03 11:50:24.066+05:00 2025-09-03 11:50:24.066+05:00 the value "VM.Standard.A1.Flex" must be defined as one of options 2025-09-03 11:50:24.074+05:00 Error: can not create client, bad configuration: did not find a proper configuration for tenancy 2025-09-03 11:50:24.074+05:00 on main.tf line 204, in provider "oci": 2025-09-03 11:50:24.074+05:00 204: provider "oci" { 2025-09-03 11:50:24.074+05:00 2025-09-03 11:50:24.074+05:00…tenancy; fix instance_shape default; use effective compartment for image/AD; update OCI logo to official wordmark
…TF_VAR guidance to avoid 401s
| @aybanda I just wanted to check in and see if there was any update on this? |
3 participants
Closes #201
Description
This PR adds a new Oracle Cloud Infrastructure (OCI) Linux template for provisioning Coder workspaces. The template includes compute instances, networking (VCN, subnet, internet gateway), and storage configuration as requested in issue #201.
Type of Change
Module Information
Path:
registry/aybanda/templates/oci-linuxNew version:
v1.0.0Breaking change: [ ] Yes [x] No
Testing & Validation
bun test)bun run fmt)demo.mov
Related Issues
Closes #201 - Add Oracle Cloud Infrastructure (OCI) template example
/claim #201