chore: initial

Author: peter-svensson

.github/commitlint.config.js

@@ -0,0 +1,13 @@
+const Configuration = {
+
+  extends: ['@commitlint/config-conventional'],
+
+  /*
+   * Any rules defined here will override rules from @commitlint/config-conventional
+   */
+  rules: {
+    'body-max-line-length': [2, 'always', 200],
+  },
+};
+
+module.exports = Configuration;

.github/dependabot.yml

@@ -0,0 +1,19 @@
+version: 2
+updates:
+  - package-ecosystem: terraform
+    directory: "/"
+    schedule:
+      interval: "daily"
+    open-pull-requests-limit: 10
+
+  - package-ecosystem: terraform
+    directory: "/examples"
+    schedule:
+      interval: "daily"
+    open-pull-requests-limit: 10
+
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
+    open-pull-requests-limit: 10

.github/workflows/build.yml

@@ -0,0 +1,28 @@
+name: Build
+
+on: [ push, workflow_dispatch ]
+
+jobs:
+  examples:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        os: [ ubuntu-latest ]
+        tf-version: [ 1.1.9, 1.2.9, 1.3.2 ]
+    steps:
+      - name: Install terraform v${{ matrix.tf-version }}
+        run: |
+          curl -LO https://releases.hashicorp.com/terraform/${{ matrix.tf-version }}/terraform_${{ matrix.tf-version }}_linux_amd64.zip
+          unzip terraform_${{ matrix.tf-version }}_linux_amd64.zip
+          sudo mv terraform /usr/local/bin
+          rm *
+      - name: Checkout code
+        uses: actions/checkout@v2
+      - name: Validate examples terraform v${{ matrix.tf-version }}
+        run: make examples
+  build:
+    needs: [examples]
+    runs-on: ubuntu-latest
+    steps:
+      - run: echo "OK"

.github/workflows/commitlint.yaml

@@ -0,0 +1,14 @@
+name: Lint Commit Messages
+
+on: [pull_request]
+
+jobs:
+  commitlint:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      - uses: wagoid/commitlint-github-action@v5
+        with:
+          configFile: "./.github/commitlint.config.js"

.github/workflows/terrascan.yaml

@@ -0,0 +1,30 @@
+name: Terrascan
+on: [ pull_request ]
+# https://github.com/marketplace/actions/terrascan-iac-scanner
+jobs:
+  terrascan:
+    runs-on: ubuntu-latest
+    name: terrascan
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+      - name: Run Terrascan
+        id: terrascan
+        uses: tenable/terrascan-action@main
+        with:
+          iac_type: 'terraform'
+          iac_version: 'v14'
+          policy_type: 'aws'
+          only_warn: true
+          sarif_upload: true
+          #non_recursive:
+          #iac_dir:
+          #policy_path:
+          #skip_rules:
+          #config_path:
+          #webhook_url:
+          #webhook_token:
+      - name: Upload SARIF file
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: terrascan.sarif

.gitignore

@@ -0,0 +1,6 @@
+**/.terraform/*
+*.tfvars
+terraform.tfstate.backup
+
+.idea
+zz

.terraform.lock.hcl

@@ -0,0 +1 @@
+* @argoyle @peter-svensson

CODEOWNERS

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2021 opzkit
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

LICENSE

@@ -0,0 +1,21 @@
+
+
+
+for f in terraform-aws*; do
+  cd $f && git remote add template [email protected]:opzkit/tf-template.git && git fetch --all && cd ..
+done
+
+gbc template
+git cherry-pick --no-commit --allow-empty 1c8badd7f7a4ffa2b80d26d84c5932ac52f184d0...807c49a8ae12ee7be4a0401877d4ac7f86145a84
+
+gcm "chore: rebase from template"
+git cherry-pick --continue
+...repeat
+
+
+tf import module.terraform-aws-dns-validated-certificate.github_repository.repo terraform-aws-dns-validated-certificate
+
+tf import module.terraform-aws-aurora-postgresql.github_repository.repo terraform-aws-aurora-postgresql
+
+tf import module.terraform-aws-aurora-mysql.github_repository.repo terraform-aws-aurora-mysql
+

README.md

@@ -0,0 +1,201 @@
+terraform {
+  required_providers {
+    github = {
+      source  = "integrations/github"
+      version = "~> 4.0"
+    }
+  }
+}
+
+module "template" {
+  source = "./template-repo"
+
+  description = "Template repository for Terraform modules"
+  name        = "tf-template"
+}
+
+module "example" {
+  depends_on = [module.template]
+  source     = "./tf-repo"
+
+  description         = "some text"
+  name                = "example"
+  template_owner      = var.github_owner
+  template_repository = module.template.template_repo
+}
+#
+module "terraform-aws-aurora-mysql" {
+  source = "./tf-repo"
+
+  description = ""
+  name        = "terraform-aws-aurora-mysql"
+}
+
+module "terraform-aws-aurora-postgresql" {
+  source = "./tf-repo"
+
+  description = ""
+  name        = "terraform-aws-aurora-postgresql"
+}
+
+module "terraform-aws-dns-validated-certificate" {
+  source = "./tf-repo"
+
+  description = ""
+  name        = "terraform-aws-dns-validated-certificate"
+}
+
+#
+#module "terraform-aws-k8s-network" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-network"
+#}
+#
+#module "terraform-cloudamqp-rabbitmq" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-cloudamqp-rabbitmq"
+#}
+#
+#module "terraform-aws-k8s" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s"
+#}
+#
+#module "terraform-aws-k8s-addons-cluster-autoscaler" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-cluster-autoscaler"
+#}
+#
+#module "nodeamqp" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "nodeamqp"
+#}
+#
+#module "terraform-aws-k8s-addons-external-secrets-operator" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-external-secrets-operator"
+#}
+#
+#module "terraform-aws-k8s-addons-grafana-agent-operator" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-grafana-agent-operator"
+#}
+#
+#module "govulncheck-action" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "govulncheck-action"
+#}
+
+#module "auth0" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "auth0"
+#}
+#
+#module "opzkit_github_io" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "opzkit.github.io"
+#}
+#
+#module "terraform-aws-k8s-addons-external-secrets" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-external-secrets"
+#}
+#
+#module "terraform-aws-k8s-addons-fluentbit" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-fluentbit"
+#}
+#
+#module "terraform-aws-elasticache-redis" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-elasticache-redis"
+#}
+#
+#module "terraform-aws-rds-instance-mysql" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-rds-instance-mysql"
+#}
+#
+#module "terraform-aws-rds-instance-postgresql" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-rds-instance-postgresql"
+#}
+#
+#module "terraform-aws-k8s-argocd-cluster-secret" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-argocd-cluster-secret"
+#}
+#
+#module "terraform-aws-kops-state-store" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-kops-state-store"
+#}
+#
+#module "terraform-aws-k8s-aws-lb-role-fix" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-aws-lb-role-fix"
+#}
+#
+#module "terraform-aws-k8s-addons-external-dns" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-external-dns"
+#}
+#
+#module "terraform-aws-k8s-addons-github-runners" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-github-runners"
+#}
+#
+#module "terraform-aws-k8s-addons-argocd" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "terraform-aws-k8s-addons-argocd"
+#}
+#
+#module "argocd-bootstrap-template" {
+#  source = "./tf-repo"
+#
+#  description = ""
+#  name        = "argocd-bootstrap-template"
+#}

main.tf

@@ -0,0 +1,4 @@
+provider "github" {
+  #  token = var.token # or `GITHUB_TOKEN`
+  owner = var.github_owner
+}