get cloudflared client real ip and fix crowdsec mw

iac/ovh.tf

@@ -1,21 +1,21 @@
 data "ovh_me" "account" {}
 data "ovh_iam_reference_actions" "domain" {
-    type = "domain"
+  type = "domain"
 }
 locals {
-  domain_read_permissions = [ for a in data.ovh_iam_reference_actions.domain.actions: a if contains(a.categories, "READ") ]
+  domain_read_permissions = [for a in data.ovh_iam_reference_actions.domain.actions : a if contains(a.categories, "READ")]
 }
 
 resource "ovh_me_api_oauth2_client" "cms" {
-  name = "cms repo"
+  name        = "cms repo"
   description = "arcodange.fr management"
-  flow = "CLIENT_CREDENTIALS"
+  flow        = "CLIENT_CREDENTIALS"
 }
 resource "ovh_iam_policy" "cms" {
   name        = "cms_manager"
   description = "Permissions related to www.arcodange.fr domain"
   identities  = [ovh_me_api_oauth2_client.cms.identity]
-  resources   = [
+  resources = [
     data.ovh_me.account.urn,
     # ovh_me_api_oauth2_client.cms.identity,
     "urn:v1:eu:resource:domain:arcodange.fr",
@@ -27,10 +27,10 @@ resource "ovh_iam_policy" "cms" {
     "account:apiovh:me/certificates/get",
     "account:apiovh:me/tag/get",
     "account:apiovh:services/get",
-  ],
-  local.domain_read_permissions[*].action,
-  [
-    "domain:apiovh:nameServer/edit",
+    ],
+    local.domain_read_permissions[*].action,
+    [
+      "domain:apiovh:nameServer/edit",
   ])
 }
 
@@ -50,8 +50,8 @@ resource "gitea_repository_actions_secret" "ovh_cms_client_secret" {
 resource "vault_kv_secret" "ovh_cms_token" {
   path = "kvv1/ovh/cms/app"
   data_json = jsonencode({
-    client_id = ovh_me_api_oauth2_client.cms.client_id
+    client_id     = ovh_me_api_oauth2_client.cms.client_id
     client_secret = ovh_me_api_oauth2_client.cms.client_secret
-    urn = ovh_me_api_oauth2_client.cms.identity
+    urn           = ovh_me_api_oauth2_client.cms.identity
   })
 }