terraform-aws-codedeploy-ecr

This module creates a terraform-enabled deployment pipeline using codebuild and codepipeline.

Requirements

No requirements.

Providers

The following providers are used by this module:

• aws

Modules

No modules.

Resources

The following resources are used by this module:

• aws_cloudwatch_log_group.account_provisioning_customizations (resource)
• aws_codebuild_project.build (resource)
• aws_codebuild_project.terraform_apply (resource)
• aws_codepipeline.codestar_account_provisioning_customizations (resource)
• aws_iam_role.build (resource)
• aws_iam_role.codepipeline_role (resource)
• aws_iam_role_policy.codebuild_role (resource)
• aws_iam_role_policy.codepipeline_policy (resource)
• aws_security_group.builder (resource)
• aws_caller_identity.current (data source)
• aws_region.current (data source)
• aws_s3_bucket.bucket_name (data source)

Required Inputs

The following input variables are required:

application_name

Description: Name of your service, should be unique across repository.

Type: string

build_envs

Description: key -> value definition for example {REGION: "eu-west-1"}

Type: map(string)

environment_name

Description: Name of your deployment environment. For example; sandbox, staging, production.

Type: string

pipeline_artifacts_bucket

Description: n/a

Type: string

region

Description: AWS region

Type: string

repository

Description: n/a

Type:

object({
    name   = string,
    branch = string
  })

subnet_ids

Description: n/a

Type: list(string)

vpc_id

Description: n/a

Type: string

Optional Inputs

The following input variables are optional (have default values):

build_configuration

Description: n/a

Type:

object({

    build_timeout      = string
    compute_type       = string
    image              = string
    terraform_version  = string
    encrypted_artifact = bool

  })

Default:

{
  "build_timeout": "300",
  "compute_type": "BUILD_GENERAL1_SMALL",
  "encrypted_artifact": true,
  "image": "aws/codebuild/amazonlinux2-x86_64-standard:3.0",
  "terraform_version": "1.2.6"
}

codestar_connection_arn

Description: An ARN for AWS codestar connection (eg for github)

Type: string

Default: null

custom_backend_template

Description: n/a

Type: string

Default: ""

custom_backend_template_variables

Description: Custom variables to be passed to the backend template {"tfstate_role_arn": "arn:aws:iam::123456789012:role/terraform-state-role"}

Type: map(string)

Default: {}

custom_build_spec

Description: AWS codebuild build custom spec

Type: string

Default: ""

logs_retention_in_days

Description: Specifies the number of days you want to retain log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1827, 3653, and 0. If you select 0, the events in the log group are always retained and never expire.

Type: number

Default: 0

resource_to_deploy

Description: List of resources that will be targeted by terraform. For example: ['aws_instance.test', 'module.app']

Type: list(string)

Default: []

roles_allowed_to_assume

Description: n/a

Type: list(string)

Default: []

tags

Description: Additional tags (e.g. '{'BusinessUnit': 'XYZ'}). Neither the tag keys nor the tag values will be modified by this module.

Type: map(string)

Default: {}

terraform_directory

Description: The directory where the terraform files are located

Type: string

Default: ""

terraform_only

Description: n/a

Type: bool

Default: false

tf_backend_region

Description: AWS region where the terraform state will be stored by default the same as the region of the pipeline

Type: string

Default: ""

tfstate_bucket

Description: Name of the bucket where the terraform state will be stored by default terraform-state-<account_id>

Type: string

Default: ""

tfstate_key

Description: Name of the key where the terraform state will be stored by default <environment_name>/<application_name>.tfstate

Type: string

Default: ""

Outputs

No outputs.