tf-starter 1.0.0

package/tf_starter/templates/azure/modules/apigateway/outputs.tf.j2

@@ -0,0 +1,18 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# API GATEWAY MODULE (Azure API Management) — Outputs
+# ---------------------------------------------------------------------------------------------------------------------
+
+output "apim_gateway_url" {
+  description = "Gateway URL of the API Management instance"
+  value       = azurerm_api_management.main.gateway_url
+}
+
+output "apim_name" {
+  description = "Name of the API Management instance"
+  value       = azurerm_api_management.main.name
+}
+
+output "apim_id" {
+  description = "ID of the API Management instance"
+  value       = azurerm_api_management.main.id
+}

package/tf_starter/templates/azure/modules/apigateway/variables.tf.j2

@@ -0,0 +1,54 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# API GATEWAY MODULE (Azure API Management) — Variables
+# ---------------------------------------------------------------------------------------------------------------------
+
+variable "project_name" {
+  description = "Name of the project"
+  type        = string
+}
+
+variable "environment" {
+  description = "Deployment environment"
+  type        = string
+}
+
+variable "location" {
+  description = "Azure region"
+  type        = string
+}
+
+variable "resource_group_name" {
+  description = "Name of the resource group"
+  type        = string
+}
+
+variable "function_app_hostname" {
+  description = "Default hostname of the Function App"
+  type        = string
+}
+
+variable "publisher_name" {
+  description = "Publisher name for API Management"
+  type        = string
+  default     = "DevOps Team"
+}
+
+variable "publisher_email" {
+  description = "Publisher email for API Management"
+  type        = string
+  default     = "admin@example.com"
+
+  ### MUST EDIT THIS ###
+}
+
+variable "sku_name" {
+  description = "API Management SKU (Consumption, Developer, Basic, Standard, Premium)"
+  type        = string
+  default     = "Consumption_0"
+}
+
+variable "tags" {
+  description = "Common resource tags"
+  type        = map(string)
+  default     = {}
+}

package/tf_starter/templates/azure/modules/compute/main.tf.j2

@@ -0,0 +1,114 @@
+# COMPUTE MODULE — VMSS + Application Gateway (Azure)
+# Generated by tf-starter
+
+locals {
+  name_prefix = "${var.project_name}-${var.environment}"
+}
+
+resource "azurerm_public_ip" "appgw" {
+  name                = "${local.name_prefix}-appgw-ip"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  allocation_method   = "Static"
+  sku                 = "Standard"
+  tags                = var.tags
+}
+
+resource "azurerm_application_gateway" "main" {
+  name                = "${local.name_prefix}-appgw"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+
+  sku {
+    name     = "Standard_v2"
+    tier     = "Standard_v2"
+    capacity = 2
+  }
+
+  gateway_ip_configuration {
+    name      = "gateway-ip-config"
+    subnet_id = var.public_subnet_id
+  }
+
+  frontend_port {
+    name = "http-port"
+    port = 80
+  }
+
+  frontend_ip_configuration {
+    name                 = "frontend-ip"
+    public_ip_address_id = azurerm_public_ip.appgw.id
+  }
+
+  backend_address_pool {
+    name = "backend-pool"
+  }
+
+  backend_http_settings {
+    name                  = "http-settings"
+    cookie_based_affinity = "Disabled"
+    port                  = 80
+    protocol              = "Http"
+    request_timeout       = 30
+  }
+
+  http_listener {
+    name                           = "http-listener"
+    frontend_ip_configuration_name = "frontend-ip"
+    frontend_port_name             = "http-port"
+    protocol                       = "Http"
+  }
+
+  request_routing_rule {
+    name                       = "routing-rule"
+    priority                   = 100
+    rule_type                  = "Basic"
+    http_listener_name         = "http-listener"
+    backend_address_pool_name  = "backend-pool"
+    backend_http_settings_name = "http-settings"
+  }
+
+  tags = var.tags
+}
+
+resource "azurerm_linux_virtual_machine_scale_set" "main" {
+  name                = "${local.name_prefix}-vmss"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  sku                 = var.vm_size
+  instances           = var.instance_count
+  admin_username      = "azureadmin"
+
+  admin_ssh_key {
+    username = "azureadmin"
+    ### MUST EDIT THIS ###
+    public_key = file("~/.ssh/id_rsa.pub")
+  }
+
+  source_image_reference {
+    publisher = "Canonical"
+    offer     = "0001-com-ubuntu-server-jammy"
+    sku       = "22_04-lts-gen2"
+    version   = "latest"
+  }
+
+  os_disk {
+    storage_account_type = "Standard_LRS"
+    caching              = "ReadWrite"
+  }
+
+  network_interface {
+    name    = "nic"
+    primary = true
+
+    ip_configuration {
+      name      = "internal"
+      primary   = true
+      subnet_id = var.subnet_id
+
+      application_gateway_backend_address_pool_ids = azurerm_application_gateway.main.backend_address_pool[*].id
+    }
+  }
+
+  tags = var.tags
+}

package/tf_starter/templates/azure/modules/compute/outputs.tf.j2

@@ -0,0 +1,9 @@
+# COMPUTE MODULE — Outputs (Azure)
+
+output "app_gateway_public_ip" {
+  value = azurerm_public_ip.appgw.ip_address
+}
+
+output "vmss_id" {
+  value = azurerm_linux_virtual_machine_scale_set.main.id
+}

package/tf_starter/templates/azure/modules/compute/variables.tf.j2

@@ -0,0 +1,23 @@
+# COMPUTE MODULE — Variables (Azure)
+
+variable "project_name" { type = string }
+variable "environment" { type = string }
+variable "location" { type = string }
+variable "resource_group_name" { type = string }
+variable "subnet_id" { type = string }
+variable "public_subnet_id" { type = string }
+
+variable "vm_size" {
+  type    = string
+  default = "Standard_B2s"
+}
+
+variable "instance_count" {
+  type    = number
+  default = 2
+}
+
+variable "tags" {
+  type    = map(string)
+  default = {}
+}

package/tf_starter/templates/azure/modules/database/main.tf.j2

@@ -0,0 +1,56 @@
+# DATABASE MODULE — PostgreSQL Flexible Server (Azure)
+# Generated by tf-starter
+
+locals {
+  name_prefix = "${var.project_name}-${var.environment}"
+}
+
+resource "azurerm_private_dns_zone" "postgres" {
+  name                = "${local.name_prefix}.postgres.database.azure.com"
+  resource_group_name = var.resource_group_name
+  tags                = var.tags
+}
+
+resource "azurerm_private_dns_zone_virtual_network_link" "postgres" {
+  name                  = "${local.name_prefix}-dns-link"
+  private_dns_zone_name = azurerm_private_dns_zone.postgres.name
+  resource_group_name   = var.resource_group_name
+  virtual_network_id    = var.vnet_id
+}
+
+resource "random_password" "db_password" {
+  length           = 24
+  special          = true
+  override_special = "!#$%&*()-_=+[]{}|:?"
+}
+
+resource "azurerm_postgresql_flexible_server" "main" {
+  name                   = "${local.name_prefix}-postgres"
+  resource_group_name    = var.resource_group_name
+  location               = var.location
+  version                = "16"
+  delegated_subnet_id    = var.subnet_id
+  private_dns_zone_id    = azurerm_private_dns_zone.postgres.id
+  administrator_login    = var.db_admin_login
+  administrator_password = random_password.db_password.result
+
+  storage_mb = var.db_storage_mb
+  sku_name   = var.db_sku_name
+
+  high_availability {
+    mode = var.db_ha ? "ZoneRedundant" : "Disabled"
+  }
+
+  backup_retention_days = var.environment == "prod" ? 35 : 7
+
+  tags = var.tags
+
+  depends_on = [azurerm_private_dns_zone_virtual_network_link.postgres]
+}
+
+resource "azurerm_postgresql_flexible_server_database" "main" {
+  name      = var.db_name
+  server_id = azurerm_postgresql_flexible_server.main.id
+  charset   = "UTF8"
+  collation = "en_US.utf8"
+}

package/tf_starter/templates/azure/modules/database/outputs.tf.j2

@@ -0,0 +1,13 @@
+# DATABASE MODULE — Outputs (Azure)
+
+output "fqdn" {
+  value = azurerm_postgresql_flexible_server.main.fqdn
+}
+
+output "server_id" {
+  value = azurerm_postgresql_flexible_server.main.id
+}
+
+output "db_name" {
+  value = azurerm_postgresql_flexible_server_database.main.name
+}

package/tf_starter/templates/azure/modules/database/variables.tf.j2

@@ -0,0 +1,38 @@
+# DATABASE MODULE — Variables (Azure)
+
+variable "project_name" { type = string }
+variable "environment" { type = string }
+variable "location" { type = string }
+variable "resource_group_name" { type = string }
+variable "subnet_id" { type = string }
+variable "vnet_id" {
+  type    = string
+  default = ""
+}
+
+variable "db_sku_name" {
+  type    = string
+  default = "GP_Standard_D2s_v3"
+}
+
+variable "db_storage_mb" {
+  type    = number
+  default = 32768
+}
+
+variable "db_name" { type = string }
+
+variable "db_admin_login" {
+  type      = string
+  sensitive = true
+}
+
+variable "db_ha" {
+  type    = bool
+  default = false
+}
+
+variable "tags" {
+  type    = map(string)
+  default = {}
+}

package/tf_starter/templates/azure/modules/kubernetes/main.tf.j2

@@ -0,0 +1,50 @@
+# KUBERNETES MODULE — AKS (Azure)
+# Generated by tf-starter
+
+locals {
+  name_prefix  = "${var.project_name}-${var.environment}"
+  cluster_name = "${local.name_prefix}-aks"
+}
+
+resource "azurerm_kubernetes_cluster" "main" {
+  name                = local.cluster_name
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  dns_prefix          = local.name_prefix
+  kubernetes_version  = var.kubernetes_version
+
+  default_node_pool {
+    name                = "default"
+    node_count          = var.node_count
+    vm_size             = var.node_vm_size
+    vnet_subnet_id      = var.subnet_id
+    enable_auto_scaling = true
+    min_count           = var.node_min_count
+    max_count           = var.node_max_count
+    os_disk_size_gb     = 50
+  }
+
+  identity {
+    type = "SystemAssigned"
+  }
+
+  network_profile {
+    network_plugin    = "azure"
+    load_balancer_sku = "standard"
+  }
+
+  oms_agent {
+    log_analytics_workspace_id = azurerm_log_analytics_workspace.aks.id
+  }
+
+  tags = var.tags
+}
+
+resource "azurerm_log_analytics_workspace" "aks" {
+  name                = "${local.name_prefix}-aks-logs"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  sku                 = "PerGB2018"
+  retention_in_days   = 30
+  tags                = var.tags
+}

package/tf_starter/templates/azure/modules/kubernetes/outputs.tf.j2

@@ -0,0 +1,19 @@
+# KUBERNETES MODULE — Outputs (Azure)
+
+output "cluster_name" {
+  value = azurerm_kubernetes_cluster.main.name
+}
+
+output "cluster_id" {
+  value = azurerm_kubernetes_cluster.main.id
+}
+
+output "kube_config" {
+  value     = azurerm_kubernetes_cluster.main.kube_config_raw
+  sensitive = true
+}
+
+output "client_certificate" {
+  value     = azurerm_kubernetes_cluster.main.kube_config[0].client_certificate
+  sensitive = true
+}

package/tf_starter/templates/azure/modules/kubernetes/variables.tf.j2

@@ -0,0 +1,37 @@
+# KUBERNETES MODULE — Variables (Azure)
+
+variable "project_name" { type = string }
+variable "environment" { type = string }
+variable "location" { type = string }
+variable "resource_group_name" { type = string }
+variable "subnet_id" { type = string }
+
+variable "kubernetes_version" {
+  type    = string
+  default = "1.29"
+}
+
+variable "node_vm_size" {
+  type    = string
+  default = "Standard_D4s_v3"
+}
+
+variable "node_count" {
+  type    = number
+  default = 2
+}
+
+variable "node_min_count" {
+  type    = number
+  default = 1
+}
+
+variable "node_max_count" {
+  type    = number
+  default = 5
+}
+
+variable "tags" {
+  type    = map(string)
+  default = {}
+}

package/tf_starter/templates/azure/modules/lambda/main.tf.j2

@@ -0,0 +1,98 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# LAMBDA MODULE — Azure Function App
+# Project: {{ project_name }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+
+locals {
+  name_prefix   = "${var.project_name}-${var.environment}"
+  function_name = "${local.name_prefix}-func"
+}
+
+# ---------------------------------------------------------------------------------------------------------------------
+# STORAGE ACCOUNT (required by Function App)
+# ---------------------------------------------------------------------------------------------------------------------
+
+resource "azurerm_storage_account" "function" {
+  name                     = replace("${local.name_prefix}fn", "-", "")
+  resource_group_name      = var.resource_group_name
+  location                 = var.location
+  account_tier             = "Standard"
+  account_replication_type = "LRS"
+
+  tags = var.tags
+}
+
+# ---------------------------------------------------------------------------------------------------------------------
+# APP SERVICE PLAN (Consumption / Premium)
+# ---------------------------------------------------------------------------------------------------------------------
+
+resource "azurerm_service_plan" "function" {
+  name                = "${local.function_name}-plan"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  os_type             = "Linux"
+  sku_name            = var.sku_name
+
+  tags = var.tags
+}
+
+# ---------------------------------------------------------------------------------------------------------------------
+# APPLICATION INSIGHTS
+# ---------------------------------------------------------------------------------------------------------------------
+
+resource "azurerm_application_insights" "function" {
+  name                = "${local.function_name}-insights"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  application_type    = "web"
+
+  tags = var.tags
+}
+
+# ---------------------------------------------------------------------------------------------------------------------
+# FUNCTION APP
+# ---------------------------------------------------------------------------------------------------------------------
+
+resource "azurerm_linux_function_app" "main" {
+  name                = local.function_name
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  service_plan_id     = azurerm_service_plan.function.id
+
+  storage_account_name       = azurerm_storage_account.function.name
+  storage_account_access_key = azurerm_storage_account.function.primary_access_key
+
+  site_config {
+    application_stack {
+      python_version = var.python_version
+    }
+
+    cors {
+      allowed_origins = var.cors_allowed_origins
+    }
+  }
+
+  app_settings = merge(
+    {
+      "FUNCTIONS_WORKER_RUNTIME"       = "python"
+      "APPINSIGHTS_INSTRUMENTATIONKEY" = azurerm_application_insights.function.instrumentation_key
+      "ENVIRONMENT"                    = var.environment
+      "PROJECT_NAME"                   = var.project_name
+    },
+    var.app_settings,
+  )
+
+  identity {
+    type = "SystemAssigned"
+  }
+
+  tags = merge(var.tags, {
+    Name = local.function_name
+  })
+
+  ### MUST EDIT THIS ###
+  # Deploy your function code using:
+  # az functionapp deployment source config-zip -g <rg> -n <name> --src <zip>
+  # Or configure CI/CD deployment.
+}

package/tf_starter/templates/azure/modules/lambda/outputs.tf.j2

@@ -0,0 +1,23 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# LAMBDA MODULE (Azure Functions) — Outputs
+# ---------------------------------------------------------------------------------------------------------------------
+
+output "function_app_name" {
+  description = "Name of the Function App"
+  value       = azurerm_linux_function_app.main.name
+}
+
+output "function_app_id" {
+  description = "ID of the Function App"
+  value       = azurerm_linux_function_app.main.id
+}
+
+output "default_hostname" {
+  description = "Default hostname of the Function App"
+  value       = azurerm_linux_function_app.main.default_hostname
+}
+
+output "principal_id" {
+  description = "Managed Identity principal ID"
+  value       = azurerm_linux_function_app.main.identity[0].principal_id
+}

package/tf_starter/templates/azure/modules/lambda/variables.tf.j2

@@ -0,0 +1,53 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# LAMBDA MODULE (Azure Functions) — Variables
+# ---------------------------------------------------------------------------------------------------------------------
+
+variable "project_name" {
+  description = "Name of the project"
+  type        = string
+}
+
+variable "environment" {
+  description = "Deployment environment"
+  type        = string
+}
+
+variable "location" {
+  description = "Azure region"
+  type        = string
+}
+
+variable "resource_group_name" {
+  description = "Name of the resource group"
+  type        = string
+}
+
+variable "sku_name" {
+  description = "App Service Plan SKU (Y1 = Consumption, EP1 = Premium)"
+  type        = string
+  default     = "Y1"
+}
+
+variable "python_version" {
+  description = "Python version for the function runtime"
+  type        = string
+  default     = "3.11"
+}
+
+variable "app_settings" {
+  description = "Additional app settings"
+  type        = map(string)
+  default     = {}
+}
+
+variable "cors_allowed_origins" {
+  description = "CORS allowed origins"
+  type        = list(string)
+  default     = ["*"]
+}
+
+variable "tags" {
+  description = "Common resource tags"
+  type        = map(string)
+  default     = {}
+}

package/tf_starter/templates/azure/modules/messaging/main.tf.j2

@@ -0,0 +1,29 @@
+# MESSAGING MODULE — Service Bus Queue (Azure)
+# Generated by tf-starter
+
+locals {
+  name_prefix = "${var.project_name}-${var.environment}"
+}
+
+resource "azurerm_servicebus_namespace" "main" {
+  name                = "${local.name_prefix}-sb"
+  resource_group_name = var.resource_group_name
+  location            = var.location
+  sku                 = "Standard"
+  tags                = var.tags
+}
+
+resource "azurerm_servicebus_queue" "main" {
+  name         = "${local.name_prefix}-queue"
+  namespace_id = azurerm_servicebus_namespace.main.id
+
+  max_delivery_count        = 10
+  dead_lettering_on_message_expiration = true
+  default_message_ttl       = "P4D"
+  lock_duration             = "PT30S"
+}
+
+resource "azurerm_servicebus_queue" "dead_letter" {
+  name         = "${local.name_prefix}-dlq"
+  namespace_id = azurerm_servicebus_namespace.main.id
+}

package/tf_starter/templates/azure/modules/messaging/outputs.tf.j2

@@ -0,0 +1,14 @@
+# MESSAGING MODULE — Outputs (Azure)
+
+output "queue_id" {
+  value = azurerm_servicebus_queue.main.id
+}
+
+output "namespace_id" {
+  value = azurerm_servicebus_namespace.main.id
+}
+
+output "namespace_connection_string" {
+  value     = azurerm_servicebus_namespace.main.default_primary_connection_string
+  sensitive = true
+}

package/tf_starter/templates/azure/modules/messaging/variables.tf.j2

@@ -0,0 +1,11 @@
+# MESSAGING MODULE — Variables (Azure)
+
+variable "project_name" { type = string }
+variable "environment" { type = string }
+variable "location" { type = string }
+variable "resource_group_name" { type = string }
+
+variable "tags" {
+  type    = map(string)
+  default = {}
+}