Skip to content

moengage/tf-core

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

419 Commits
.github
.github
 
 
.prismaCloud
.prismaCloud
 
 
acm
acm
 
 
autoscaling_group
autoscaling_group
 
 
autoscaling_group_abs
autoscaling_group_abs
 
 
autoscaling_group_multiarch_abs
autoscaling_group_multiarch_abs
 
 
autoscaling_with_launch_template
autoscaling_with_launch_template
 
 
autoscaling_with_launch_template_abs
autoscaling_with_launch_template_abs
 
 
cloudwatch/alarm
cloudwatch/alarm
 
 
dockerized_lambda_with_api_gateway
dockerized_lambda_with_api_gateway
 
 
ec2
ec2
 
 
eks_cluster
eks_cluster
 
 
eks_irsa
eks_irsa
 
 
eks_nodegroup
eks_nodegroup
 
 
elasticache/redis
elasticache/redis
 
 
lambda
lambda
 
 
launch_template
launch_template
 
 
load_balancers/application
load_balancers/application
 
 
rds
rds
 
 
s3
s3
 
 
security_group
security_group
 
 
sqs
sqs
 
 
state_backend
state_backend
 
 
subnet_resources
subnet_resources
 
 
target_group
target_group
 
 
vpc
vpc
 
 
.gitignore
.gitignore
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 

Repository files navigation

tf-core

Core Terraform modules to create infrastructure resources with default tags. This modules can be used to write simple terraform modules to manage infrastructure.

Important Notes

  • Naming Convention: Resource names are dynamically generated using provided variables. We follow some convention while naming resources, please go through locals.tf/resource_identifier to understand pattern.
  • Permanent Resources: These resources will be created no matter what
  • Optional Resources: These resources are optional, will be created if flag variables are on.

Modules

  • state_backend: # We keep state in S3 and for state locking use DynamoDB. Every environment/cluster should implement this exactly once.

    • 1 S3 Bucket
    • 1 DynamoDB Table

  • vpc: # Every environment/cluster should implement this exactly once and try to re-use common resources (NAT Gateways, Public Route Table, VPC Endpoint) as much as possible

    • Permanent resources
      • 1 VPC
      • 1 Internet Gateway
      • 1 Public Route Table # This route table should be used while creating team/business specific subnet_resources
      • <n> Management Public Subnets # These subnets are used for NAT Gateways, n = no. of AZs
      • <n> Elastic IPs for Nat Gateways
      • <n> Nat Gateways # Per AZ. These NAT Gateways should be used for creating team/business specific subnet_resources
      • 1 VPC Endpoint for S3 # Automatically attached to public, This endpoint should be attached to specific route tables while creating team/business specific subnet_resources
    • Optional resources
      • Flow log # If VPC flow logs enabled
      • 1 Cloudwatch Log Group for Flow log
      • IAM Role and Policy for flow logs

  • subnet_resources: # Each team/business should implement this module to create their subnets and other resources. Any network related code for team/businesses should go here.

    • Permanent resources
      • <n> private subnets and <n> public subnets # n = no. of AZs
      • <n> route tables for each private subnet
      • <n> network ACLS for each private subnet
      • <n> S3 VPC endpoint association for private subnets
      • <n> NAT Gateway route and <n> route association with private subnets
      • <n> Public Route Table association with just created public subnets

  • Other modules can be used when they are needed

About

Generic terraform modules to create resources on cloud (AWS)

Topics

aws terraform terraform-modules terraform-aws

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

2 stars

Watchers

6 watching

Forks

3 forks
Report repository

Releases 1

0.1.0 Latest
Jul 18, 2022

Packages

No packages published

Contributors 18
+ 4 contributors

Languages