You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
bdeshi
19ebb73fe8
|
6 months ago | |
|---|---|---|
| .gitignore | 6 months ago | |
| .terraform-version | 6 months ago | |
| .terraform.lock.hcl | 6 months ago | |
| LICENSE | 6 months ago | |
| README.md | 6 months ago | |
| README.terraform.md | 6 months ago | |
| aws.data.tf | 6 months ago | |
| aws.dynamodb.tf | 6 months ago | |
| aws.iam.tf | 6 months ago | |
| aws.kms.tf | 6 months ago | |
| aws.s3.tf | 6 months ago | |
| aws.ssm.tf | 6 months ago | |
| terraform.meta.tf | 6 months ago | |
| terraform.outputs.tf | 6 months ago | |
| terraform.tfvars.sample | 6 months ago | |
| terraform.variables.tf | 6 months ago | |
README.md
Terraform AWS Pre-Base
Intro
This project deploys the basic resources necessary for running multi-user Terraform deployments on an AWS account.
- an s3 bucket for storing terraform states
- a dynamodb table for maintaining terraform locks
- an admin user intended for use in other IaC projects
- a kms key intended for securing other IaC project secrets
- a parameter store tree to keep outputs of this project for reference
This configuration is intended to be manually executed once at the beginning by the root user.
| ⚠️ | Re-deploying this project again after running other AWS IaC projects can be extremely destructive. |
|---|
Usage
-
Install terraform or opentofu (preferably with tfenv). The required version is stated in
terraform.meta.tf. -
Install terraform dependencies:
terraform init -upgrade -
Insert org-specific variable values in
<org-name>.tfvars. See*.tfvars.samplefor example. -
Then execute as:
terraform apply -var-file=<org-name>.tfvars
Notes
The terraform state is not saved in s3, because it is assumed that no s3 bucket for terraform states exists yet. User should secure the state file using some other method.
Generated outputs are saved in a parameter store tree for future reference.