resource "aws_security_group" "github_runner_sg" {
  name        = "github-runner-sg"
  description = "Security group for GitHub self-hosted runners"
}

resource "aws_instance" "github_runner" {
  ami           = "ami-07d3c3e2c1184609e"  
  instance_type = "t3.medium"
  key_name      = "dummy-keypair"
  security_groups = [
    aws_security_group.github_runner_sg.name
  ]
  iam_instance_profile = aws_iam_instance_profile.github_runner_instance_profile.name
  user_data = <<-EOF
              #!/bin/bash
              curl -o actions-runner.tar.gz -L https://github.com/actions/runner/releases/download/v2.297.0/actions-runner-linux-x64-2.297.0.tar.gz
              tar xzf ./actions-runner.tar.gz
              ./config.sh --url https://github.com/your-org/your-repo --token GITHUB_TOKEN
              sudo ./svc.sh install
              sudo ./svc.sh start
              EOF
}

resource "aws_iam_instance_profile" "github_runner_instance_profile" {
  name = "github-runner-instance-profile"
  role = aws_iam_role.github_runner_role.name
}