Skip to content

malatep/genesis_challenge

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
image
image
 
 
modules
modules
 
 
.gitignore
.gitignore
 
 
Readme.md
Readme.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
provider.tf
provider.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Genesis challenge

author: Patrick Malatesta

date: 12 April 2023

Architecture Diagram

Architecture Diagram

Prerequisites

To deploy the resources you will need:

Input variables

You can customize the deployment by modifying the following variables.

You can pass the desired values with either of the following methods:

Variable Name Description Type Default Value
region Name of the AWS Region where resources will be created string eu-west-1
az_number Number of AZs in use number 2
os Operating system of the Ec2 instance string Linux
instance_count Number of Ec2 instance to be created number 1
ec2_ebs_volume_count Number of hard drive volumes attached to each Ec2 instance number 2
database_class SQL Server Database engine class string db.t3.medium

Deploy to different AWS Account representing different environments (DEV, QA, STAGING, PROD)

By default the resources will be deployed in the AWS account matching the AWS credentials stored locally. This is assumed to be the DEV environment/account.

If you want to deploy to a different environment/AWS account you can modify the providers sections in the file main.tf for all the modules. For example, if you want to deploy to the PROD environment you would set the providers attribute aws = aws.PROD for all the modules in the file main.tf:

# additional module configuration
... 
  providers = {
    aws = aws.PROD 
  }
...
# additional module configuration

NOTE: this approach uses the provider assume_role option. The Terraform AWS Provider will attempt to assume the specified role using the supplied credentials. This method increases security as credentials are not hardcoded and passed as variables.

The requirement for this is that IAM roles in the target accounts (QA, STAGING, PROD) already exist and that the local AWS credentials allow to assume those roles. The IAM role ARNs need to be specified in the file provider.tf like in the example below:

# additional provider configuration
...
  assume_role {
    role_arn     = "arn:aws:iam::<PROD_ACCOUNT_ID>:role/<PROD_ROLE_NAME>"
    session_name = "prod_account"
  }
...
# additional provider configuration

For more details about this method you can refer to this tutorial.

Installation steps

1 - clone the repository

git clone https://github.com/malatep/genesis_challenge.git

2 - navigate to the project directory

cd genesis_challenge

3 - initialize terraform

terraform init

4 - plan the deployment

terraform plan

5 - deploy the infrastructure

terraform apply

6 - clean up the resources

terraform destroy

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages