npm - tf-starter - Versions diffs - 1.0.0 - Mend

tf-starter 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (137) hide show

package/tf_starter/templates/aws/modules/network/variables.tf.j2 ADDED Viewed

@@ -0,0 +1,52 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# NETWORK MODULE — Variables
+# ---------------------------------------------------------------------------------------------------------------------
+variable "project_name" {
+  description = "Name of the project"
+  type        = string
+}
+variable "environment" {
+  description = "Deployment environment"
+  type        = string
+}
+variable "region" {
+  description = "AWS region"
+  type        = string
+}
+variable "vpc_cidr" {
+  description = "CIDR block for the VPC"
+  type        = string
+  default     = "10.0.0.0/16"
+  validation {
+    condition     = can(cidrhost(var.vpc_cidr, 0))
+    error_message = "Must be a valid CIDR block."
+  }
+}
+variable "public_subnet_cidrs" {
+  description = "CIDR blocks for public subnets"
+  type        = list(string)
+  default     = ["10.0.1.0/24", "10.0.2.0/24"]
+}
+variable "private_subnet_cidrs" {
+  description = "CIDR blocks for private subnets"
+  type        = list(string)
+  default     = ["10.0.10.0/24", "10.0.11.0/24"]
+}
+variable "availability_zones" {
+  description = "Availability zones to deploy into"
+  type        = list(string)
+}
+variable "tags" {
+  description = "Common resource tags"
+  type        = map(string)
+  default     = {}
+}

package/tf_starter/templates/aws/modules/storage/main.tf.j2 ADDED Viewed

@@ -0,0 +1,88 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# STORAGE MODULE — Amazon S3
+# Project: {{ project_name }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+locals {
+  name_prefix = "${var.project_name}-${var.environment}"
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# S3 BUCKET
+# ---------------------------------------------------------------------------------------------------------------------
+resource "aws_s3_bucket" "main" {
+  bucket = "${local.name_prefix}-storage"
+  tags = merge(var.tags, {
+    Name = "${local.name_prefix}-storage"
+  })
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# VERSIONING
+# ---------------------------------------------------------------------------------------------------------------------
+resource "aws_s3_bucket_versioning" "main" {
+  bucket = aws_s3_bucket.main.id
+  versioning_configuration {
+    status = var.enable_versioning ? "Enabled" : "Suspended"
+  }
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# ENCRYPTION
+# ---------------------------------------------------------------------------------------------------------------------
+resource "aws_s3_bucket_server_side_encryption_configuration" "main" {
+  bucket = aws_s3_bucket.main.id
+  rule {
+    apply_server_side_encryption_by_default {
+      sse_algorithm = "AES256"
+    }
+    bucket_key_enabled = true
+  }
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# BLOCK PUBLIC ACCESS
+# ---------------------------------------------------------------------------------------------------------------------
+resource "aws_s3_bucket_public_access_block" "main" {
+  bucket = aws_s3_bucket.main.id
+  block_public_acls       = true
+  block_public_policy     = true
+  ignore_public_acls      = true
+  restrict_public_buckets = true
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# LIFECYCLE RULES
+# ---------------------------------------------------------------------------------------------------------------------
+resource "aws_s3_bucket_lifecycle_configuration" "main" {
+  bucket = aws_s3_bucket.main.id
+  rule {
+    id     = "transition-to-ia"
+    status = "Enabled"
+    transition {
+      days          = 90
+      storage_class = "STANDARD_IA"
+    }
+    transition {
+      days          = 180
+      storage_class = "GLACIER"
+    }
+    noncurrent_version_expiration {
+      noncurrent_days = 90
+    }
+  }
+}

package/tf_starter/templates/aws/modules/storage/outputs.tf.j2 ADDED Viewed

@@ -0,0 +1,23 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# STORAGE MODULE — Outputs
+# ---------------------------------------------------------------------------------------------------------------------
+output "bucket_id" {
+  description = "ID of the S3 bucket"
+  value       = aws_s3_bucket.main.id
+}
+output "bucket_arn" {
+  description = "ARN of the S3 bucket"
+  value       = aws_s3_bucket.main.arn
+}
+output "bucket_domain_name" {
+  description = "Domain name of the S3 bucket"
+  value       = aws_s3_bucket.main.bucket_domain_name
+}
+output "bucket_regional_domain_name" {
+  description = "Regional domain name of the S3 bucket"
+  value       = aws_s3_bucket.main.bucket_regional_domain_name
+}

package/tf_starter/templates/aws/modules/storage/variables.tf.j2 ADDED Viewed

@@ -0,0 +1,25 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# STORAGE MODULE — Variables
+# ---------------------------------------------------------------------------------------------------------------------
+variable "project_name" {
+  description = "Name of the project"
+  type        = string
+}
+variable "environment" {
+  description = "Deployment environment"
+  type        = string
+}
+variable "enable_versioning" {
+  description = "Enable S3 bucket versioning"
+  type        = bool
+  default     = true
+}
+variable "tags" {
+  description = "Common resource tags"
+  type        = map(string)
+  default     = {}
+}

package/tf_starter/templates/aws/root/backend.tf.j2 ADDED Viewed

@@ -0,0 +1,19 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# REMOTE BACKEND CONFIGURATION (S3 + DynamoDB)
+# Project: {{ project_name }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+terraform {
+  backend "s3" {
+    ### MUST EDIT THIS ###
+    bucket         = "{{ project_name }}-terraform-state"
+    key            = "{{ project_name }}/terraform.tfstate"
+    region         = "{{ region }}"
+    encrypt        = true
+    dynamodb_table = "{{ project_name }}-terraform-lock"
+    # Uncomment to use a specific AWS profile:
+    # profile = "your-aws-profile"
+  }
+}

package/tf_starter/templates/aws/root/main.tf.j2 ADDED Viewed

@@ -0,0 +1,219 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# ROOT MAIN CONFIGURATION
+# Project: {{ project_name }}
+# Provider: {{ provider | upper }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+locals {
+  project_name = "{{ project_name }}"
+  region       = var.region
+  environment  = var.environment
+  common_tags = {
+    Project     = local.project_name
+    Environment = local.environment
+    ManagedBy   = "terraform"
+    Generator   = "tf-starter"
+  }
+}
+# ---------------------------------------------------------------------------------------------------------------------
+# NETWORK MODULE (always included)
+# ---------------------------------------------------------------------------------------------------------------------
+module "network" {
+  source = "./modules/network"
+  project_name = local.project_name
+  environment  = local.environment
+  region       = local.region
+  vpc_cidr             = var.vpc_cidr
+  public_subnet_cidrs  = var.public_subnet_cidrs
+  private_subnet_cidrs = var.private_subnet_cidrs
+  availability_zones   = var.availability_zones
+  tags = local.common_tags
+}
+{% if "compute" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# COMPUTE MODULE
+# ---------------------------------------------------------------------------------------------------------------------
+module "compute" {
+  source = "./modules/compute"
+  project_name = local.project_name
+  environment  = local.environment
+  vpc_id             = module.network.vpc_id
+  private_subnet_ids = module.network.private_subnet_ids
+  public_subnet_ids  = module.network.public_subnet_ids
+  instance_type    = var.instance_type
+  min_size         = var.asg_min_size
+  max_size         = var.asg_max_size
+  desired_capacity = var.asg_desired_capacity
+  tags = local.common_tags
+}
+{% endif %}
+{% if "lambda" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# LAMBDA MODULE
+# ---------------------------------------------------------------------------------------------------------------------
+module "lambda" {
+  source = "./modules/lambda"
+  project_name = local.project_name
+  environment  = local.environment
+  function_name         = var.lambda_function_name
+  runtime               = var.lambda_runtime
+  handler               = var.lambda_handler
+  timeout               = var.lambda_timeout
+  memory_size           = var.lambda_memory_size
+  environment_variables = var.lambda_environment_variables
+  deploy_in_vpc      = var.lambda_deploy_in_vpc
+  vpc_id             = module.network.vpc_id
+  private_subnet_ids = module.network.private_subnet_ids
+  tags = local.common_tags
+}
+{% endif %}
+{% if "apigateway" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# API GATEWAY MODULE
+# ---------------------------------------------------------------------------------------------------------------------
+module "apigateway" {
+  source = "./modules/apigateway"
+  project_name = local.project_name
+  environment  = local.environment
+  lambda_function_name = module.lambda.function_name
+  lambda_invoke_arn    = module.lambda.invoke_arn
+  endpoint_type        = var.apigw_endpoint_type
+  authorization_type   = var.apigw_authorization_type
+  throttle_burst_limit = var.apigw_throttle_burst_limit
+  throttle_rate_limit  = var.apigw_throttle_rate_limit
+  enable_cors          = var.apigw_enable_cors
+  tags = local.common_tags
+}
+{% endif %}
+{% if "database" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# DATABASE MODULE
+# ---------------------------------------------------------------------------------------------------------------------
+module "database" {
+  source = "./modules/database"
+  project_name = local.project_name
+  environment  = local.environment
+  vpc_id             = module.network.vpc_id
+  private_subnet_ids = module.network.private_subnet_ids
+  db_instance_class    = var.db_instance_class
+  db_allocated_storage = var.db_allocated_storage
+  db_name              = var.db_name
+  db_username          = var.db_username
+  db_multi_az          = var.environment == "prod" ? true : false
+  tags = local.common_tags
+}
+{% endif %}
+{% if "kubernetes" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# KUBERNETES MODULE (EKS)
+# ---------------------------------------------------------------------------------------------------------------------
+module "kubernetes" {
+  source = "./modules/kubernetes"
+  project_name = local.project_name
+  environment  = local.environment
+  vpc_id             = module.network.vpc_id
+  private_subnet_ids = module.network.private_subnet_ids
+  cluster_version    = var.eks_cluster_version
+  node_instance_type = var.eks_node_instance_type
+  node_desired_size  = var.eks_node_desired_size
+  node_min_size      = var.eks_node_min_size
+  node_max_size      = var.eks_node_max_size
+  tags = local.common_tags
+}
+{% endif %}
+{% if "monitoring" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# MONITORING MODULE
+# ---------------------------------------------------------------------------------------------------------------------
+module "monitoring" {
+  source = "./modules/monitoring"
+  project_name = local.project_name
+  environment  = local.environment
+  alarm_email = var.alarm_email
+  {% if "compute" in services %}
+  asg_name = module.compute.asg_name
+  {% endif %}
+  {% if "database" in services %}
+  db_instance_id = module.database.db_instance_id
+  {% endif %}
+  tags = local.common_tags
+}
+{% endif %}
+{% if "messaging" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# MESSAGING MODULE (SQS)
+# ---------------------------------------------------------------------------------------------------------------------
+module "messaging" {
+  source = "./modules/messaging"
+  project_name = local.project_name
+  environment  = local.environment
+  message_retention_seconds = var.sqs_message_retention
+  visibility_timeout        = var.sqs_visibility_timeout
+  tags = local.common_tags
+}
+{% endif %}
+{% if "storage" in services %}
+# ---------------------------------------------------------------------------------------------------------------------
+# STORAGE MODULE (S3)
+# ---------------------------------------------------------------------------------------------------------------------
+module "storage" {
+  source = "./modules/storage"
+  project_name = local.project_name
+  environment  = local.environment
+  enable_versioning = var.s3_enable_versioning
+  tags = local.common_tags
+}
+{% endif %}

package/tf_starter/templates/aws/root/outputs.tf.j2 ADDED Viewed

@@ -0,0 +1,134 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# ROOT OUTPUTS
+# Project: {{ project_name }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+# ----- Network -----
+output "vpc_id" {
+  description = "ID of the VPC"
+  value       = module.network.vpc_id
+}
+output "public_subnet_ids" {
+  description = "IDs of the public subnets"
+  value       = module.network.public_subnet_ids
+}
+output "private_subnet_ids" {
+  description = "IDs of the private subnets"
+  value       = module.network.private_subnet_ids
+}
+{% if "compute" in services %}
+# ----- Compute -----
+output "alb_dns_name" {
+  description = "DNS name of the Application Load Balancer"
+  value       = module.compute.alb_dns_name
+}
+output "asg_name" {
+  description = "Name of the Auto Scaling Group"
+  value       = module.compute.asg_name
+}
+{% endif %}
+{% if "lambda" in services %}
+# ----- Lambda -----
+output "lambda_function_name" {
+  description = "Name of the Lambda function"
+  value       = module.lambda.function_name
+}
+output "lambda_function_arn" {
+  description = "ARN of the Lambda function"
+  value       = module.lambda.function_arn
+}
+output "lambda_invoke_arn" {
+  description = "Invocation ARN of the Lambda function"
+  value       = module.lambda.invoke_arn
+}
+{% endif %}
+{% if "apigateway" in services %}
+# ----- API Gateway -----
+output "api_endpoint" {
+  description = "Invoke URL of the API Gateway"
+  value       = module.apigateway.api_endpoint
+}
+output "api_id" {
+  description = "ID of the API Gateway REST API"
+  value       = module.apigateway.api_id
+}
+{% endif %}
+{% if "database" in services %}
+# ----- Database -----
+output "db_endpoint" {
+  description = "RDS instance endpoint"
+  value       = module.database.db_endpoint
+}
+output "db_port" {
+  description = "RDS instance port"
+  value       = module.database.db_port
+}
+{% endif %}
+{% if "kubernetes" in services %}
+# ----- Kubernetes (EKS) -----
+output "eks_cluster_endpoint" {
+  description = "EKS cluster API endpoint"
+  value       = module.kubernetes.cluster_endpoint
+}
+output "eks_cluster_name" {
+  description = "EKS cluster name"
+  value       = module.kubernetes.cluster_name
+}
+{% endif %}
+{% if "monitoring" in services %}
+# ----- Monitoring -----
+output "sns_topic_arn" {
+  description = "ARN of the SNS alarm topic"
+  value       = module.monitoring.sns_topic_arn
+}
+{% endif %}
+{% if "messaging" in services %}
+# ----- Messaging -----
+output "sqs_queue_url" {
+  description = "URL of the SQS queue"
+  value       = module.messaging.queue_url
+}
+output "sqs_queue_arn" {
+  description = "ARN of the SQS queue"
+  value       = module.messaging.queue_arn
+}
+{% endif %}
+{% if "storage" in services %}
+# ----- Storage -----
+output "s3_bucket_id" {
+  description = "ID of the S3 bucket"
+  value       = module.storage.bucket_id
+}
+output "s3_bucket_arn" {
+  description = "ARN of the S3 bucket"
+  value       = module.storage.bucket_arn
+}
+{% endif %}

package/tf_starter/templates/aws/root/providers.tf.j2 ADDED Viewed

@@ -0,0 +1,24 @@
+# ---------------------------------------------------------------------------------------------------------------------
+# PROVIDER CONFIGURATION
+# Project: {{ project_name }}
+# Generated by tf-starter
+# ---------------------------------------------------------------------------------------------------------------------
+provider "aws" {
+  region = var.region
+  default_tags {
+    tags = {
+      Project     = "{{ project_name }}"
+      ManagedBy   = "terraform"
+      Generator   = "tf-starter"
+    }
+  }
+  ### MUST EDIT THIS ###
+  # Uncomment and configure as needed:
+  # profile = "your-aws-profile"
+  # assume_role {
+  #   role_arn = "arn:aws:iam::ACCOUNT_ID:role/TerraformRole"
+  # }
+}