aws-insight 0.14.0

data/lib/terraforming/template/tf/eip.erb

@@ -0,0 +1,11 @@
+<% eips.each do |addr| -%>
+resource "aws_eip" "<%= module_name_of(addr) %>" {
+<% if addr.instance_id -%>
+    instance          = "<%= addr.instance_id %>"
+<% elsif addr.network_interface_id -%>
+    network_interface = "<%= addr.network_interface_id %>"
+<% end -%>
+    vpc               = <%= vpc?(addr) %>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/elasti_cache_cluster.erb

@@ -0,0 +1,22 @@
+<% cache_clusters.each do |cache_cluster| -%>
+resource "aws_elasticache_cluster" "<%= module_name_of(cache_cluster) %>" {
+    cluster_id           = "<%= cache_cluster.cache_cluster_id %>"
+    engine               = "<%= cache_cluster.engine %>"
+    engine_version       = "<%= cache_cluster.engine_version %>"
+    node_type            = "<%= cache_cluster.cache_node_type %>"
+    num_cache_nodes      = <%= cache_cluster.num_cache_nodes %>
+    parameter_group_name = "<%= cache_cluster.cache_parameter_group.cache_parameter_group_name %>"
+  <%- if cache_cluster.configuration_endpoint -%>
+    port                 = <%= cache_cluster.configuration_endpoint.port %>
+  <%- else -%>
+    port                 = <%= cache_cluster.cache_nodes[0].endpoint.port %>
+  <%- end -%>
+  <%- if cluster_in_vpc?(cache_cluster) -%>
+    subnet_group_name    = "<%= cache_cluster.cache_subnet_group_name %>"
+    security_group_ids   = <%= security_group_ids_of(cache_cluster).inspect %>
+  <%- else -%>
+    security_group_names = <%= security_group_names_of(cache_cluster).inspect %>
+  <%- end -%>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/elasti_cache_subnet_group.erb

@@ -0,0 +1,8 @@
+<% cache_subnet_groups.each do |cache_subnet_group| -%>
+resource "aws_elasticache_subnet_group" "<%= module_name_of(cache_subnet_group) %>" {
+    name        = "<%= cache_subnet_group.cache_subnet_group_name %>"
+    description = "<%= cache_subnet_group.cache_subnet_group_description %>"
+    subnet_ids  = <%= subnet_ids_of(cache_subnet_group).inspect %>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/elastic_filesystem.erb

@@ -0,0 +1,18 @@
+<% file_systems.each_with_index do |efs, idx| -%>
+resource "aws_efs_file_system" "<%= module_name_of(efs) %>" {
+<% if efs.creation_token -%>
+    creation_token = "<%= efs.creation_token %>"
+<% end -%>
+<% if efs.file_system_id -%>
+    file_system_id = "<%= efs.file_system_id %>"
+<% end -%>
+<% if efs.performance_mode -%>
+    performance_mode = "<%= efs.performance_mode %>"
+<% end -%>
+<% if efs.name -%>
+    tags {
+        Name = "<%= efs.name %>"
+    }
+<% end -%>
+}
+<% end -%>

data/lib/terraforming/template/tf/elb.erb

@@ -0,0 +1,51 @@
+<% load_balancers.each do |load_balancer| -%>
+  <%- load_balancer_attributes = load_balancer_attributes_of(load_balancer) -%>
+resource "aws_elb" "<%= module_name_of(load_balancer) %>" {
+    name                        = "<%= load_balancer.load_balancer_name %>"
+  <%- if vpc_elb?(load_balancer) -%>
+    subnets                     = <%= load_balancer.subnets.inspect %>
+  <%- else -%>
+    availability_zones          = <%= load_balancer.availability_zones.inspect %>
+  <%- end -%>
+    security_groups             = <%= load_balancer.security_groups.inspect %>
+    instances                   = <%= load_balancer.instances.map { |instance| instance.instance_id }.inspect %>
+    cross_zone_load_balancing   = <%= load_balancer_attributes.cross_zone_load_balancing.enabled %>
+    idle_timeout                = <%= load_balancer_attributes.connection_settings.idle_timeout %>
+    connection_draining         = <%= load_balancer_attributes.connection_draining.enabled %>
+    connection_draining_timeout = <%= load_balancer_attributes.connection_draining.timeout %>
+    internal                    = <%= internal?(load_balancer).to_s %>
+
+<%- if load_balancer_attributes.access_log.enabled -%>
+    access_logs {
+        bucket        = "<%= load_balancer_attributes.access_log.s3_bucket_name %>"
+        bucket_prefix = "<%= load_balancer_attributes.access_log.s3_bucket_prefix %>"
+        interval      = <%= load_balancer_attributes.access_log.emit_interval %>
+    }
+
+<%- end -%>
+<% load_balancer.listener_descriptions.map { |ld| ld.listener }.map do |listener| -%>
+    listener {
+        instance_port      = <%= listener.instance_port %>
+        instance_protocol  = "<%= listener.instance_protocol.downcase %>"
+        lb_port            = <%= listener.load_balancer_port %>
+        lb_protocol        = "<%= listener.protocol.downcase %>"
+        ssl_certificate_id = "<%= listener.ssl_certificate_id %>"
+    }
+
+<% end -%>
+    health_check {
+        healthy_threshold   = <%= load_balancer.health_check.healthy_threshold %>
+        unhealthy_threshold = <%= load_balancer.health_check.unhealthy_threshold %>
+        interval            = <%= load_balancer.health_check.interval %>
+        target              = "<%= load_balancer.health_check.target %>"
+        timeout             = <%= load_balancer.health_check.timeout %>
+    }
+
+    tags {
+<% @client.describe_tags(load_balancer_names: [load_balancer.load_balancer_name]).tag_descriptions.first.tags.each do |tag| -%>
+        "<%= tag.key %>" = "<%= tag.value %>"
+<% end -%>
+    }
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_group.erb

@@ -0,0 +1,7 @@
+<% iam_groups.each do |group| -%>
+resource "aws_iam_group" "<%= module_name_of(group) %>" {
+    name = "<%= group.group_name %>"
+    path = "<%= group.path %>"
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_group_membership.erb

@@ -0,0 +1,8 @@
+<% iam_groups.each do |group| -%>
+resource "aws_iam_group_membership" "<%= module_name_of(group) %>" {
+    name  = "<%= membership_name_of(group) %>"
+    users = <%= group_members_of(group).inspect %>
+    group = "<%= group.group_name %>"
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_group_policy.erb

@@ -0,0 +1,10 @@
+<% iam_group_policies.each do |policy| -%>
+resource "aws_iam_group_policy" "<%= unique_name(policy) %>" {
+    name   = "<%= policy.policy_name %>"
+    group  = "<%= policy.group_name %>"
+    policy = <<POLICY
+<%= prettify_policy(policy.policy_document, unescape: true) %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_instance_profile.erb

@@ -0,0 +1,8 @@
+<% iam_instance_profiles.each do |profile| -%>
+resource "aws_iam_instance_profile" "<%= module_name_of(profile) %>" {
+    name  = "<%= profile.instance_profile_name %>"
+    path  = "<%= profile.path %>"
+    roles = <%= profile.roles.map { |role| role.role_name }.inspect %>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_policy.erb

@@ -0,0 +1,12 @@
+<% iam_policies.each do |policy| -%>
+  <%- version = iam_policy_version_of(policy) -%>
+resource "aws_iam_policy" "<%= module_name_of(policy) %>" {
+    name        = "<%= policy.policy_name %>"
+    path        = "<%= policy.path %>"
+    description = "<%= iam_policy_description(policy) %>"
+    policy      = <<POLICY
+<%= prettify_policy(version.document, unescape: true) %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_policy_attachment.erb

@@ -0,0 +1,10 @@
+<% iam_policy_attachments.each do |policy_attachment| -%>
+resource "aws_iam_policy_attachment" "<%= module_name_of(policy_attachment) %>" {
+    name       = "<%= policy_attachment[:name] %>"
+    policy_arn = "<%= policy_attachment[:arn] %>"
+    groups     = <%= policy_attachment[:entities].policy_groups.map(&:group_name).inspect %>
+    users      = <%= policy_attachment[:entities].policy_users.map(&:user_name).inspect %>
+    roles      = <%= policy_attachment[:entities].policy_roles.map(&:role_name).inspect %>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_role.erb

@@ -0,0 +1,10 @@
+<% iam_roles.each do |role| -%>
+resource "aws_iam_role" "<%= module_name_of(role) %>" {
+    name               = "<%= role.role_name %>"
+    path               = "<%= role.path %>"
+    assume_role_policy = <<POLICY
+<%= prettify_policy(role.assume_role_policy_document, unescape: true) %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_role_policy.erb

@@ -0,0 +1,10 @@
+<% iam_role_policies.each do |policy| -%>
+resource "aws_iam_role_policy" "<%= unique_name(policy) %>" {
+    name   = "<%= policy.policy_name %>"
+    role   = "<%= policy.role_name %>"
+    policy = <<POLICY
+<%= prettify_policy(policy.policy_document, unescape: true) %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_user.erb

@@ -0,0 +1,7 @@
+<% iam_users.each do |user| -%>
+resource "aws_iam_user" "<%= module_name_of(user) %>" {
+    name = "<%= user.user_name %>"
+    path = "<%= user.path %>"
+}
+
+<% end -%>

data/lib/terraforming/template/tf/iam_user_policy.erb

@@ -0,0 +1,10 @@
+<% iam_user_policies.each do |policy| -%>
+resource "aws_iam_user_policy" "<%= unique_name(policy) %>" {
+    name   = "<%= policy.policy_name %>"
+    user   = "<%= policy.user_name %>"
+    policy = <<POLICY
+<%= prettify_policy(policy.policy_document, unescape: true) %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/internet_gateway.erb

@@ -0,0 +1,14 @@
+<% internet_gateways.each do |internet_gateway| -%>
+<% unless internet_gateway.attachments.empty? -%>
+resource "aws_internet_gateway" "<%= module_name_of(internet_gateway) %>" {
+    vpc_id = "<%= internet_gateway.attachments[0].vpc_id %>"
+
+    tags {
+<% internet_gateway.tags.each do |tag| -%>
+        "<%= tag.key %>" = "<%= tag.value %>"
+<% end -%>
+    }
+}
+
+<% end -%>
+<% end -%>

data/lib/terraforming/template/tf/kms_alias.erb

@@ -0,0 +1,7 @@
+<% aliases.each do |als| -%>
+resource "aws_kms_alias" "<%= module_name_of(als) %>" {
+    name          = "<%= als.alias_name %>"
+    target_key_id = "<%= als.target_key_id %>"
+}
+
+<% end -%>

data/lib/terraforming/template/tf/kms_key.erb

@@ -0,0 +1,13 @@
+<% keys.each do |key| -%>
+resource "aws_kms_key" "<%= module_name_of(key) %>" {
+    description             = "<%= key.description %>"
+    key_usage               = "<%= key_usage_of(key) %>"
+    is_enabled              = <%= key.enabled %>
+    enable_key_rotation     = <%= key_rotation_status_of(key).key_rotation_enabled %>
+
+    policy = <<POLICY
+<%= key_policy_of(key).strip %>
+POLICY
+}
+
+<% end -%>

data/lib/terraforming/template/tf/launch_configuration.erb

@@ -0,0 +1,68 @@
+<% launch_configurations.each do |launch_configuration| -%>
+resource "aws_launch_configuration" "<%= module_name_of(launch_configuration) %>" {
+    name                        = "<%= launch_configuration.launch_configuration_name %>"
+    image_id                    = "<%= launch_configuration.image_id %>"
+    instance_type               = "<%= launch_configuration.instance_type %>"
+<%- if launch_configuration.iam_instance_profile -%>
+    iam_instance_profile        = "<%= launch_configuration.iam_instance_profile %>"
+<%- end -%>
+<%- unless launch_configuration.key_name.empty? -%>
+    key_name                    = "<%= launch_configuration.key_name %>"
+<%- end -%>
+    security_groups             = <%= launch_configuration.security_groups.map { |sg| sg }.inspect %>
+<%- unless launch_configuration.associate_public_ip_address.nil? -%>
+    associate_public_ip_address = <%= launch_configuration.associate_public_ip_address %>
+<%- end -%>
+ <%- unless launch_configuration.user_data.empty? -%>
+    user_data                   = "<%= launch_configuration.user_data %>"
+<%- end -%>
+    enable_monitoring           = <%= launch_configuration.instance_monitoring.enabled %>
+    ebs_optimized               = <%= launch_configuration.ebs_optimized %>
+<%- if launch_configuration.spot_price -%>
+    spot_price                  = "<%= launch_configuration.spot_price %>"
+<%- end -%>
+<%- if launch_configuration.placement_tenancy -%>
+    placement_tenancy          = "<%= launch_configuration.placement_tenancy %>"
+<%- end -%>
+
+<% launch_configuration.block_device_mappings.each do |block_device| -%>
+    <%- if root_block_device?(block_device) -%>
+    root_block_device {
+        <%- if ebs_block_device?(block_device) -%>
+        volume_type           = "<%= block_device.ebs.volume_type %>"
+        volume_size           = <%= block_device.ebs.volume_size %>
+        <%- if block_device.ebs.iops -%>
+        iops                  = <%= block_device.ebs.iops %>
+        <%- end -%>
+        delete_on_termination = <%= block_device.ebs.delete_on_termination %>
+        <%- end -%>
+    }
+
+    <%- elsif ebs_block_device?(block_device) -%>
+    ebs_block_device {
+        device_name           = "<%= block_device.device_name %>"
+        <%- if block_device.ebs.snapshot_id -%>
+        snapshot_id           = "<%= block_device.ebs.snapshot_id %>"
+        <%- end -%>
+        volume_type           = "<%= block_device.ebs.volume_type %>"
+        volume_size           = <%= block_device.ebs.volume_size %>
+        <%- if block_device.ebs.iops -%>
+        iops                  = <%= block_device.ebs.iops %>
+        <%- end -%>
+        delete_on_termination = <%= block_device.ebs.delete_on_termination %>
+        <%- if block_device.ebs.encrypted -%>
+        encrypted             = <%= block_device.ebs.encrypted %>
+        <%- end -%>
+    }
+
+    <%- elsif ephemeral_block_device?(block_device) -%>
+    ephemeral_block_device {
+        device_name = "<%= block_device.device_name %>"
+        virtual_name = "<%= block_device.virtual_name %>"
+    }
+
+    <%- end -%>
+<%- end -%>
+}
+
+<%- end -%>

data/lib/terraforming/template/tf/nat_gateway.erb

@@ -0,0 +1,9 @@
+<% nat_gateways.each do |nat_gateway| -%>
+<% unless nat_gateway.nat_gateway_addresses.empty? -%>
+resource "aws_nat_gateway" "<%= module_name_of(nat_gateway) %>" {
+    allocation_id = "<%= nat_gateway.nat_gateway_addresses[0].allocation_id %>"
+    subnet_id = "<%= nat_gateway.subnet_id %>"
+}
+
+<% end -%>
+<% end -%>

data/lib/terraforming/template/tf/network_acl.erb

@@ -0,0 +1,43 @@
+<% network_acls.each do |network_acl| -%>
+resource "aws_network_acl" "<%= module_name_of(network_acl) %>" {
+    vpc_id     = "<%= network_acl.vpc_id %>"
+    subnet_ids = <%= subnet_ids_of(network_acl).inspect %>
+
+<% ingresses_of(network_acl).each do |ingress| -%>
+    ingress {
+        from_port  = <%= from_port_of(ingress) %>
+        to_port    = <%= to_port_of(ingress) %>
+        rule_no    = <%= ingress.rule_number %>
+        action     = "<%= ingress.rule_action %>"
+        protocol   = "<%= ingress.protocol %>"
+        cidr_block = "<%= ingress.cidr_block %>"
+<%- if ingress.icmp_type_code -%>
+        icmp_code  = "<%= ingress.icmp_type_code.code %>"
+        icmp_type  = "<%= ingress.icmp_type_code.type %>"
+<%- end -%>
+    }
+
+<% end -%>
+<% egresses_of(network_acl).each do |egress| -%>
+    egress {
+        from_port  = <%= from_port_of(egress) %>
+        to_port    = <%= to_port_of(egress) %>
+        rule_no    = <%= egress.rule_number %>
+        action     = "<%= egress.rule_action %>"
+        protocol   = "<%= egress.protocol %>"
+        cidr_block = "<%= egress.cidr_block %>"
+<%- if egress.icmp_type_code -%>
+        icmp_code  = "<%= egress.icmp_type_code.code %>"
+        icmp_type  = "<%= egress.icmp_type_code.type %>"
+<%- end -%>
+    }
+
+<% end -%>
+    tags {
+<% network_acl.tags.each do |tag| -%>
+        "<%= tag.key %>" = "<%= tag.value %>"
+<% end -%>
+    }
+}
+
+<% end -%>

data/lib/terraforming/template/tf/network_interface.erb

@@ -0,0 +1,22 @@
+<% network_interfaces.each do |network_interface| -%>
+resource "aws_network_interface" "<%= module_name_of(network_interface) %>" {
+    subnet_id         = "<%= network_interface.subnet_id %>"
+    private_ips       = <%= private_ips_of(network_interface).inspect %>
+    security_groups   = <%= security_groups_of(network_interface).inspect %>
+    source_dest_check = <%= network_interface.source_dest_check %>
+<% if network_interface.attachment && network_interface.attachment.instance_id -%>
+    attachment {
+        instance     = "<%= network_interface.attachment.instance_id %>"
+        device_index = <%= network_interface.attachment.device_index %>
+    }
+<% end -%>
+<% if network_interface.tag_set.length > 0 -%>
+    tags {
+<% network_interface.tag_set.each do |tag| -%>
+        "<%= tag.key %>" = "<%= tag.value %>"
+<% end -%>
+    }
+<% end -%>
+}
+
+<% end -%>

data/lib/terraforming/template/tf/rds.erb

@@ -0,0 +1,25 @@
+<% db_instances.each do |instance| -%>
+resource "aws_db_instance" "<%= instance.db_instance_identifier %>" {
+    identifier                = "<%= module_name_of(instance) %>"
+    allocated_storage         = <%= instance.allocated_storage %>
+    storage_type              = "<%= instance.storage_type %>"
+    engine                    = "<%= instance.engine %>"
+    engine_version            = "<%= instance.engine_version %>"
+    instance_class            = "<%= instance.db_instance_class %>"
+    name                      = "<%= instance.db_name %>"
+    username                  = "<%= instance.master_username %>"
+    password                  = "xxxxxxxx"
+    port                      = <%= instance.endpoint.port %>
+    publicly_accessible       = <%= instance.publicly_accessible %>
+    availability_zone         = "<%= instance.availability_zone %>"
+    security_group_names      = <%= instance.db_security_groups.map { |sg| sg.db_security_group_name }.inspect %>
+    vpc_security_group_ids    = <%= instance.vpc_security_groups.map { |sg| sg.vpc_security_group_id }.inspect %>
+    db_subnet_group_name      = "<%= instance.db_subnet_group ? instance.db_subnet_group.db_subnet_group_name : "" %>"
+    parameter_group_name      = "<%= instance.db_parameter_groups[0].db_parameter_group_name %>"
+    multi_az                  = <%= instance.multi_az %>
+    backup_retention_period   = <%= instance.backup_retention_period %>
+    backup_window             = "<%= instance.preferred_backup_window %>"
+    maintenance_window        = "<%= instance.preferred_maintenance_window %>"
+    final_snapshot_identifier = "<%= instance.db_instance_identifier %>-final"
+}
+<% end -%>

data/lib/terraforming/template/tf/redshift.erb

@@ -0,0 +1,23 @@
+<% clusters.each do |cluster| -%>
+resource "aws_redshift_cluster" "<%= module_name_of(cluster) %>" {
+    cluster_identifier                  = "<%= cluster.cluster_identifier %>"
+<%- if cluster.db_name -%>
+    database_name                       = "<%= cluster.db_name %>"
+<%- end -%>
+    cluster_type                        = "<%= cluster.number_of_nodes == 1 ? "single-node" : "multi-node" %>"
+    node_type                           = "<%= cluster.node_type %>"
+    master_password                     = "xxxxxxxx"
+    master_username                     = "<%= cluster.master_username %>"
+    availability_zone                   = "<%= cluster.availability_zone %>"
+    preferred_maintenance_window        = "<%= cluster.preferred_maintenance_window %>"
+    cluster_parameter_group_name        = "<%= cluster.cluster_parameter_groups[0].parameter_group_name %>"
+    automated_snapshot_retention_period = "<%= cluster.automated_snapshot_retention_period %>"
+    port                                = "<%= cluster.endpoint.port %>"
+    cluster_version                     = "<%= cluster.cluster_version %>"
+    allow_version_upgrade               = "<%= cluster.allow_version_upgrade %>"
+    number_of_nodes                     = "<%= cluster.number_of_nodes %>"
+    publicly_accessible                 = "<%= cluster.publicly_accessible %>"
+    encrypted                           = "<%= cluster.encrypted %>"
+    skip_final_snapshot                 = "true"
+}
+<% end -%>