From c50a92b292a34ae2ea8c77a55e859f55ac9297e2 Mon Sep 17 00:00:00 2001 From: Angelos Kyratzakos Date: Thu, 19 Dec 2024 17:51:31 +0200 Subject: [PATCH 1/2] fix assume IAM role and adding docs for modules --- aws/aurora-cluster/README.md | 2 +- aws/awat/README.md | 2 +- aws/blapi/README.md | 2 +- aws/calls-offloader-storage/README.md | 2 +- aws/community-rds-infra/README.md | 2 +- .../README.md | 4 ++-- .../README.md | 2 +- aws/customer-web-server/README.md | 2 +- aws/eks-customer/README.md | 4 ++-- aws/elasticsearch/README.md | 2 +- aws/elrond/README.md | 2 +- aws/github-runner/README.md | 1 + aws/github-runner/iam.tf | 2 +- aws/github-runner/locals.tf | 1 + aws/grafana/README.md | 2 +- aws/import-export/README.md | 2 +- aws/provisioner/README.md | 2 +- aws/rds-cloudwatch-alarms/README.md | 2 +- aws/transit-gateway-setup/README.md | 2 +- 19 files changed, 21 insertions(+), 19 deletions(-) diff --git a/aws/aurora-cluster/README.md b/aws/aurora-cluster/README.md index d144574a..4299692c 100644 --- a/aws/aurora-cluster/README.md +++ b/aws/aurora-cluster/README.md @@ -75,7 +75,7 @@ No modules. | [preferred\_backup\_window](#input\_preferred\_backup\_window) | The daily time range during which automated backups are created if automated backups are enabled using the BackupRetentionPeriod parameter | `string` | n/a | yes | | [preferred\_maintenance\_window](#input\_preferred\_maintenance\_window) | The window to perform maintenance in | `string` | n/a | yes | | [publicly\_accessible](#input\_publicly\_accessible) | Bool to control if instance is publicly accessible | `bool` | `false` | no | -| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | +| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | | [rds\_sns\_topic](#input\_rds\_sns\_topic) | RDS events sns topic | `string` | `"rds-cluster-events"` | no | | [replica\_min](#input\_replica\_min) | Number of replicas to deploy initially with the RDS Cluster. | `number` | n/a | yes | | [service\_name](#input\_service\_name) | THe name of the service | `string` | n/a | yes | diff --git a/aws/awat/README.md b/aws/awat/README.md index 77def59d..5ae087ec 100644 --- a/aws/awat/README.md +++ b/aws/awat/README.md @@ -61,7 +61,7 @@ | [awat\_db\_password](#input\_awat\_db\_password) | n/a | `string` | n/a | yes | | [awat\_db\_username](#input\_awat\_db\_username) | n/a | `string` | n/a | yes | | [awat\_enable\_rds\_alerting](#input\_awat\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [awat\_enabled\_cloudwatch\_logs\_exports](#input\_awat\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [awat\_enabled\_cloudwatch\_logs\_exports](#input\_awat\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [awat\_kms\_key](#input\_awat\_kms\_key) | n/a | `string` | n/a | yes | | [awat\_max\_capacity](#input\_awat\_max\_capacity) | n/a | `number` | `4` | no | | [awat\_min\_capacity](#input\_awat\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/blapi/README.md b/aws/blapi/README.md index b26e800d..d90a4c05 100644 --- a/aws/blapi/README.md +++ b/aws/blapi/README.md @@ -52,7 +52,7 @@ | [blapi\_db\_cluster\_instance\_identifier](#input\_blapi\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [blapi\_db\_cluster\_instance\_type](#input\_blapi\_db\_cluster\_instance\_type) | n/a | `string` | `"db.t4g.medium"` | no | | [blapi\_enable\_rds\_alerting](#input\_blapi\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [blapi\_enabled\_cloudwatch\_logs\_exports](#input\_blapi\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [blapi\_enabled\_cloudwatch\_logs\_exports](#input\_blapi\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [blapi\_kms\_key](#input\_blapi\_kms\_key) | n/a | `string` | n/a | yes | | [blapi\_max\_capacity](#input\_blapi\_max\_capacity) | n/a | `number` | `4` | no | | [blapi\_min\_capacity](#input\_blapi\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/calls-offloader-storage/README.md b/aws/calls-offloader-storage/README.md index 8025529d..74dd91a4 100644 --- a/aws/calls-offloader-storage/README.md +++ b/aws/calls-offloader-storage/README.md @@ -49,7 +49,7 @@ No modules. | [root\_kms\_key\_id](#input\_root\_kms\_key\_id) | Optional KMS Key ID for encrypting the root volume of the NFS server. Leave empty to use the default AWS-managed KMS key. | `string` | `""` | no | | [root\_volume\_size](#input\_root\_volume\_size) | Size of the root volume in GiB for the NFS server. | `number` | `20` | no | | [volume\_type](#input\_volume\_type) | Type of volumefor the NFS server. | `string` | `"gp3"` | no | -| [vpc\_configurations](#input\_vpc\_configurations) | Map of VPC configurations, including VPC ID and subnets. | 
map(object({
    vpc_id     = string
    subnet_ids = list(string)
  }))
| n/a | yes | +| [vpc\_configurations](#input\_vpc\_configurations) | Map of VPC configurations, including VPC ID and subnets. | 
map(object({
    vpc_id     = string
    subnet_ids = list(string)
  }))
| n/a | yes | ## Outputs diff --git a/aws/community-rds-infra/README.md b/aws/community-rds-infra/README.md index f79de6c2..4ba2df4b 100644 --- a/aws/community-rds-infra/README.md +++ b/aws/community-rds-infra/README.md @@ -28,7 +28,7 @@ No modules. |------|-------------|------|---------|:--------:| | [private\_hosted\_zoneid](#input\_private\_hosted\_zoneid) | The ID of the Route53 private hosted zone | `string` | n/a | yes | | [rds\_reader\_hostnames](#input\_rds\_reader\_hostnames) | The RDS reader hostname, must be 3 elements. The first element is the generic reader hostname, the second is the primary reader, and the third is the secondary reader. | `list(string)` | n/a | yes | -| [rds\_reader\_records](#input\_rds\_reader\_records) | The RDS reader records, must be 3 elements. The first element is the generic reader record, the second is the primary reader, and the third is the secondary reader. | `list(string)` | 
[
  "community-db-ro",
  "community-db-reader1",
  "community-db-reader2"
]
| no | +| [rds\_reader\_records](#input\_rds\_reader\_records) | The RDS reader records, must be 3 elements. The first element is the generic reader record, the second is the primary reader, and the third is the secondary reader. | `list(string)` | 
[
  "community-db-ro",
  "community-db-reader1",
  "community-db-reader2"
]
| no | | [rds\_writer\_hostname](#input\_rds\_writer\_hostname) | The RDS writer hostname | `string` | n/a | yes | ## Outputs diff --git a/aws/cross-account-private-link-eks-private-target-account/README.md b/aws/cross-account-private-link-eks-private-target-account/README.md index 36892050..01b65aa3 100644 --- a/aws/cross-account-private-link-eks-private-target-account/README.md +++ b/aws/cross-account-private-link-eks-private-target-account/README.md @@ -45,7 +45,7 @@ No modules. | [check\_nlb](#input\_check\_nlb) | n/a | `bool` | `false` | no | | [cluster\_name](#input\_cluster\_name) | Name of the EKS cluster to create or validate | `string` | n/a | yes | | [create\_private\_endpoint](#input\_create\_private\_endpoint) | Flag to indicate if the EKS cluster should have a private endpoint only | `bool` | `true` | no | -| [eks\_cluster\_tags](#input\_eks\_cluster\_tags) | n/a | `map(string)` | 
{
  "Name": "EKS Cluster Private link POC"
}
| no | +| [eks\_cluster\_tags](#input\_eks\_cluster\_tags) | n/a | `map(string)` | 
{
  "Name": "EKS Cluster Private link POC"
}
| no | | [environment](#input\_environment) | Environment name | `string` | n/a | yes | | [instance\_type](#input\_instance\_type) | Type of EC2 instance | `string` | `"t2.micro"` | no | | [key\_name](#input\_key\_name) | n/a | `string` | `""` | no | @@ -53,7 +53,7 @@ No modules. | [nlb\_name](#input\_nlb\_name) | Name of the Network Load Balancer | `string` | n/a | yes | | [proxy\_security\_group\_ids](#input\_proxy\_security\_group\_ids) | Security Groups for the proxy instance | `list(string)` | n/a | yes | | [proxy\_subnet\_id](#input\_proxy\_subnet\_id) | Subnet ID where the instance will be deployed | `string` | n/a | yes | -| [proxy\_tags](#input\_proxy\_tags) | n/a | `map(string)` | 
{
  "Name": "Proxy Instance POC"
}
| no | +| [proxy\_tags](#input\_proxy\_tags) | n/a | `map(string)` | 
{
  "Name": "Proxy Instance POC"
}
| no | | [security\_group\_ids](#input\_security\_group\_ids) | Security Groups for the EKS cluster | `list(string)` | n/a | yes | | [subnet\_ids](#input\_subnet\_ids) | Subnets used by the EKS cluster | `list(string)` | n/a | yes | | [target\_group\_name](#input\_target\_group\_name) | Name of the target group for NLB | `string` | n/a | yes | diff --git a/aws/cross-account-private-link-service-source-account/README.md b/aws/cross-account-private-link-service-source-account/README.md index fb3395f8..d26ed056 100644 --- a/aws/cross-account-private-link-service-source-account/README.md +++ b/aws/cross-account-private-link-service-source-account/README.md @@ -41,7 +41,7 @@ No modules. | [ami\_id](#input\_ami\_id) | AMI ID to be used for the instance | `string` | n/a | yes | | [check\_nlb](#input\_check\_nlb) | n/a | `bool` | `false` | no | | [environment](#input\_environment) | Environment name | `string` | n/a | yes | -| [instance\_tags](#input\_instance\_tags) | n/a | `map(string)` | 
{
  "Name": "Service Instance POC"
}
| no | +| [instance\_tags](#input\_instance\_tags) | n/a | `map(string)` | 
{
  "Name": "Service Instance POC"
}
| no | | [instance\_type](#input\_instance\_type) | Type of EC2 instance | `string` | `"t2.micro"` | no | | [listener\_port](#input\_listener\_port) | Listener port for NLB | `number` | `80` | no | | [nlb\_name](#input\_nlb\_name) | Name of the Network Load Balancer | `string` | n/a | yes | diff --git a/aws/customer-web-server/README.md b/aws/customer-web-server/README.md index 3d65a2b7..42971fe0 100644 --- a/aws/customer-web-server/README.md +++ b/aws/customer-web-server/README.md @@ -53,7 +53,7 @@ | [cws\_db\_username](#input\_cws\_db\_username) | n/a | `string` | n/a | yes | | [cws\_enable\_bastion](#input\_cws\_enable\_bastion) | n/a | `bool` | `true` | no | | [cws\_enable\_rds\_alerting](#input\_cws\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [cws\_enabled\_cloudwatch\_logs\_exports](#input\_cws\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [cws\_enabled\_cloudwatch\_logs\_exports](#input\_cws\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [cws\_kms\_key](#input\_cws\_kms\_key) | n/a | `string` | n/a | yes | | [cws\_max\_capacity](#input\_cws\_max\_capacity) | n/a | `number` | `4` | no | | [cws\_min\_capacity](#input\_cws\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/eks-customer/README.md b/aws/eks-customer/README.md index abd1b611..7063b03f 100644 --- a/aws/eks-customer/README.md +++ b/aws/eks-customer/README.md @@ -84,7 +84,7 @@ | [cluster\_endpoint\_private\_access](#input\_cluster\_endpoint\_private\_access) | Indicates whether or not the Amazon EKS private API server endpoint is enabled | `bool` | n/a | yes | | [cluster\_endpoint\_public\_access](#input\_cluster\_endpoint\_public\_access) | Indicates whether or not the Amazon EKS public API server endpoint is enabled | `bool` | n/a | yes | | [cluster\_name](#input\_cluster\_name) | The cluster name | `string` | n/a | yes | -| [cluster\_security\_group\_additional\_rules](#input\_cluster\_security\_group\_additional\_rules) | The list of additional security group rules for the EKS cluster | 
map(object({
    from_port   = number
    to_port     = number
    protocol    = string
    cidr_blocks = list(string)
    type        = string
  }))
| n/a | yes | +| [cluster\_security\_group\_additional\_rules](#input\_cluster\_security\_group\_additional\_rules) | The list of additional security group rules for the EKS cluster | 
map(object({
    from_port   = number
    to_port     = number
    protocol    = string
    cidr_blocks = list(string)
    type        = string
  }))
| n/a | yes | | [cluster\_tags](#input\_cluster\_tags) | A map of tags to add to all resources | `map(string)` | `{}` | no | | [cluster\_version](#input\_cluster\_version) | The Kubernetes version for the EKS cluster | `string` | n/a | yes | | [coredns\_version](#input\_coredns\_version) | The version of the CoreDNS addon | `string` | n/a | yes | @@ -112,7 +112,7 @@ | [snapshot\_controller\_version](#input\_snapshot\_controller\_version) | n/a | `string` | n/a | yes | | [staff\_role\_arn](#input\_staff\_role\_arn) | The staff role arn | `string` | n/a | yes | | [use\_name\_prefix](#input\_use\_name\_prefix) | Determines whether to use `name` as is or create a unique name beginning with the `name` as the prefix | `bool` | `false` | no | -| [utilities](#input\_utilities) | The list of utilities | 
list(object({
    name               = string
    enable_irsa        = bool
    internal_dns       = any
    service_account    = string
    cluster_label_type = string
  }))
| n/a | yes | +| [utilities](#input\_utilities) | The list of utilities | 
list(object({
    name               = string
    enable_irsa        = bool
    internal_dns       = any
    service_account    = string
    cluster_label_type = string
  }))
| n/a | yes | | [volume\_delete\_on\_termination](#input\_volume\_delete\_on\_termination) | Indicates whether the EBS volume is deleted on termination | `bool` | `true` | no | | [volume\_encrypted](#input\_volume\_encrypted) | Indicates whether the EBS volume is encrypted | `bool` | `true` | no | | [volume\_iops](#input\_volume\_iops) | The amount of provisioned IOPS | `number` | `3000` | no | diff --git a/aws/elasticsearch/README.md b/aws/elasticsearch/README.md index af0f2715..242bb326 100644 --- a/aws/elasticsearch/README.md +++ b/aws/elasticsearch/README.md @@ -54,7 +54,7 @@ No modules. | [dedicated\_master\_enabled](#input\_dedicated\_master\_enabled) | n/a | `bool` | n/a | yes | | [dedicated\_master\_type](#input\_dedicated\_master\_type) | n/a | `string` | n/a | yes | | [domain\_name](#input\_domain\_name) | n/a | `string` | n/a | yes | -| [elasticsearch\_access\_policy\_principal](#input\_elasticsearch\_access\_policy\_principal) | Which AWS resources should have access to the Elasticsearch cluster | `list(string)` | 
[
  "*"
]
| no | +| [elasticsearch\_access\_policy\_principal](#input\_elasticsearch\_access\_policy\_principal) | Which AWS resources should have access to the Elasticsearch cluster | `list(string)` | 
[
  "*"
]
| no | | [environment](#input\_environment) | n/a | `string` | n/a | yes | | [es\_instance\_type](#input\_es\_instance\_type) | n/a | `string` | n/a | yes | | [es\_version](#input\_es\_version) | n/a | `string` | n/a | yes | diff --git a/aws/elrond/README.md b/aws/elrond/README.md index 47189960..4614d5b5 100644 --- a/aws/elrond/README.md +++ b/aws/elrond/README.md @@ -51,7 +51,7 @@ | [elrond\_db\_cluster\_instance\_identifier](#input\_elrond\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [elrond\_db\_cluster\_instance\_type](#input\_elrond\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [elrond\_enable\_rds\_alerting](#input\_elrond\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [elrond\_enabled\_cloudwatch\_logs\_exports](#input\_elrond\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [elrond\_enabled\_cloudwatch\_logs\_exports](#input\_elrond\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [elrond\_kms\_key](#input\_elrond\_kms\_key) | n/a | `string` | n/a | yes | | [elrond\_max\_capacity](#input\_elrond\_max\_capacity) | n/a | `number` | `4` | no | | [elrond\_min\_capacity](#input\_elrond\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/github-runner/README.md b/aws/github-runner/README.md index 4fb529c6..f2cc6d76 100644 --- a/aws/github-runner/README.md +++ b/aws/github-runner/README.md @@ -24,6 +24,7 @@ No modules. | [aws_iam_role_policy_attachment.attach_github_secrets_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource | | [aws_caller_identity.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity) | data source | | [aws_kms_key.default_secrets_manager_key](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/kms_key) | data source | +| [aws_region.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/region) | data source | ## Inputs diff --git a/aws/github-runner/iam.tf b/aws/github-runner/iam.tf index 7de06d7c..ab31e7c4 100644 --- a/aws/github-runner/iam.tf +++ b/aws/github-runner/iam.tf @@ -31,7 +31,7 @@ resource "aws_iam_policy" "github_secrets_policy" { "Action": [ "secretsmanager:GetSecretValue" ], - "Resource": "arn:aws:secretsmanager:${data.aws_caller_identity.current.account_id}:secret:${var.secrets_suffix}" + "Resource": "arn:aws:secretsmanager:${data.aws_region.current.name}:${data.aws_caller_identity.current.account_id}:secret:${var.secrets_suffix}" }, { "Effect": "Allow", diff --git a/aws/github-runner/locals.tf b/aws/github-runner/locals.tf index c173a594..9db9975a 100644 --- a/aws/github-runner/locals.tf +++ b/aws/github-runner/locals.tf @@ -1,4 +1,5 @@ data "aws_caller_identity" "current" {} +data "aws_region" "current" {} # Fetch the default KMS key for Secrets Manager data "aws_kms_key" "default_secrets_manager_key" { diff --git a/aws/grafana/README.md b/aws/grafana/README.md index e6740fb8..c8ad1595 100644 --- a/aws/grafana/README.md +++ b/aws/grafana/README.md @@ -52,7 +52,7 @@ | [grafana\_db\_cluster\_instance\_identifier](#input\_grafana\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [grafana\_db\_cluster\_instance\_type](#input\_grafana\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [grafana\_enable\_rds\_alerting](#input\_grafana\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [grafana\_enabled\_cloudwatch\_logs\_exports](#input\_grafana\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [grafana\_enabled\_cloudwatch\_logs\_exports](#input\_grafana\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [grafana\_kms\_key](#input\_grafana\_kms\_key) | n/a | `string` | n/a | yes | | [grafana\_max\_capacity](#input\_grafana\_max\_capacity) | n/a | `number` | `4` | no | | [grafana\_min\_capacity](#input\_grafana\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/import-export/README.md b/aws/import-export/README.md index 415977d6..d009fece 100644 --- a/aws/import-export/README.md +++ b/aws/import-export/README.md @@ -40,7 +40,7 @@ No modules. | [other\_account\_id](#input\_other\_account\_id) | AWS Account ID that needs access to the KMS key | `string` | n/a | yes | | [other\_account\_role\_name](#input\_other\_account\_role\_name) | Role name in the other AWS account that needs access to the KMS key | `string` | n/a | yes | | [other\_account\_user\_name](#input\_other\_account\_user\_name) | User name in the other AWS account that needs access to the KMS key | `string` | n/a | yes | -| [s3\_bucket\_encryption](#input\_s3\_bucket\_encryption) | n/a | 
map(object({
    sse_algorithm      = string
    kms_master_key_id  = string
    bucket_key_enabled = bool
  }))
| `{}` | no | +| [s3\_bucket\_encryption](#input\_s3\_bucket\_encryption) | n/a | 
map(object({
    sse_algorithm      = string
    kms_master_key_id  = string
    bucket_key_enabled = bool
  }))
| `{}` | no | | [s3\_bucket\_policies](#input\_s3\_bucket\_policies) | Map of bucket names to their respective policies | `map(string)` | `{}` | no | | [s3\_bucket\_tags](#input\_s3\_bucket\_tags) | n/a | `map(map(string))` | `{}` | no | | [s3\_buckets](#input\_s3\_buckets) | List of S3 buckets to manage | `list(string)` | `[]` | no | diff --git a/aws/provisioner/README.md b/aws/provisioner/README.md index 16dcfa5b..3c6693ba 100644 --- a/aws/provisioner/README.md +++ b/aws/provisioner/README.md @@ -59,7 +59,7 @@ | [provisioner\_db\_cluster\_instance\_identifier](#input\_provisioner\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [provisioner\_db\_cluster\_instance\_type](#input\_provisioner\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [provisioner\_enable\_rds\_alerting](#input\_provisioner\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [provisioner\_enabled\_cloudwatch\_logs\_exports](#input\_provisioner\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [provisioner\_enabled\_cloudwatch\_logs\_exports](#input\_provisioner\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [provisioner\_kms\_key](#input\_provisioner\_kms\_key) | n/a | `string` | n/a | yes | | [provisioner\_max\_capacity](#input\_provisioner\_max\_capacity) | n/a | `number` | `4` | no | | [provisioner\_min\_capacity](#input\_provisioner\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/rds-cloudwatch-alarms/README.md b/aws/rds-cloudwatch-alarms/README.md index f0c6c6a1..61872358 100644 --- a/aws/rds-cloudwatch-alarms/README.md +++ b/aws/rds-cloudwatch-alarms/README.md @@ -32,7 +32,7 @@ No modules. | [instance\_type](#input\_instance\_type) | The rds database instance type to calculate the alarm limits | `string` | n/a | yes | | [memory\_alarm\_limit](#input\_memory\_alarm\_limit) | Limit to trigger memory alarm. Number in Bytes (100MB) | `string` | `"100000000"` | no | | [memory\_cache\_proportion](#input\_memory\_cache\_proportion) | Proportion of memory that is used for cache. By default it is 75%. | `number` | `0.75` | no | -| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.m6g.large": "8589934592",
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | +| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.m6g.large": "8589934592",
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | | [sns\_topic](#input\_sns\_topic) | The sns topic name to sent cloudwatch alarms | `string` | n/a | yes | | [tags](#input\_tags) | A map of tags to assign to the resource | `map(string)` | `{}` | no | diff --git a/aws/transit-gateway-setup/README.md b/aws/transit-gateway-setup/README.md index 35fff239..5bae9c48 100644 --- a/aws/transit-gateway-setup/README.md +++ b/aws/transit-gateway-setup/README.md @@ -50,7 +50,7 @@ No modules. | [security\_destination\_cidr\_block](#input\_security\_destination\_cidr\_block) | Value of the cidr block for the security TGW | `string` | n/a | yes | | [security\_group\_referencing\_support](#input\_security\_group\_referencing\_support) | Security Group Referencing allows to specify other SGs as references, or matching criterion in inbound security rules to allow instance-to-instance traffic | `string` | `"enable"` | no | | [tags](#input\_tags) | Additional tags for the RAM | `map(string)` | `{}` | no | -| [tgw\_attachment\_subnet\_ids](#input\_tgw\_attachment\_subnet\_ids) | The Subnet IDs in the prod us-west-2 region we want to attach to the TGW | `list(string)` | 
[
  ""
]
| no | +| [tgw\_attachment\_subnet\_ids](#input\_tgw\_attachment\_subnet\_ids) | The Subnet IDs in the prod us-west-2 region we want to attach to the TGW | `list(string)` | 
[
  ""
]
| no | | [tgw\_attachment\_vpc\_id](#input\_tgw\_attachment\_vpc\_id) | The VPC in the cross region we want to attach to the TGW | `string` | n/a | yes | | [tgw\_peering\_attachment\_name](#input\_tgw\_peering\_attachment\_name) | The name of the peering attachment | `string` | n/a | yes | From fffbbeffb18480320f9d74b6394b6da0e869d134 Mon Sep 17 00:00:00 2001 From: Angelos Kyratzakos Date: Fri, 20 Dec 2024 11:05:10 +0200 Subject: [PATCH 2/2] update to docs --- aws/aurora-cluster/README.md | 2 +- aws/awat/README.md | 2 +- aws/blapi/README.md | 2 +- aws/calls-offloader-storage/README.md | 2 +- aws/community-rds-infra/README.md | 2 +- .../README.md | 4 ++-- .../README.md | 2 +- aws/customer-web-server/README.md | 2 +- aws/eks-customer/README.md | 4 ++-- aws/elasticsearch/README.md | 2 +- aws/elrond/README.md | 2 +- aws/grafana/README.md | 2 +- aws/import-export/README.md | 2 +- aws/provisioner/README.md | 2 +- aws/rds-cloudwatch-alarms/README.md | 2 +- aws/transit-gateway-setup/README.md | 2 +- 16 files changed, 18 insertions(+), 18 deletions(-) diff --git a/aws/aurora-cluster/README.md b/aws/aurora-cluster/README.md index 4299692c..d144574a 100644 --- a/aws/aurora-cluster/README.md +++ b/aws/aurora-cluster/README.md @@ -75,7 +75,7 @@ No modules. | [preferred\_backup\_window](#input\_preferred\_backup\_window) | The daily time range during which automated backups are created if automated backups are enabled using the BackupRetentionPeriod parameter | `string` | n/a | yes | | [preferred\_maintenance\_window](#input\_preferred\_maintenance\_window) | The window to perform maintenance in | `string` | n/a | yes | | [publicly\_accessible](#input\_publicly\_accessible) | Bool to control if instance is publicly accessible | `bool` | `false` | no | -| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | +| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | | [rds\_sns\_topic](#input\_rds\_sns\_topic) | RDS events sns topic | `string` | `"rds-cluster-events"` | no | | [replica\_min](#input\_replica\_min) | Number of replicas to deploy initially with the RDS Cluster. | `number` | n/a | yes | | [service\_name](#input\_service\_name) | THe name of the service | `string` | n/a | yes | diff --git a/aws/awat/README.md b/aws/awat/README.md index 5ae087ec..77def59d 100644 --- a/aws/awat/README.md +++ b/aws/awat/README.md @@ -61,7 +61,7 @@ | [awat\_db\_password](#input\_awat\_db\_password) | n/a | `string` | n/a | yes | | [awat\_db\_username](#input\_awat\_db\_username) | n/a | `string` | n/a | yes | | [awat\_enable\_rds\_alerting](#input\_awat\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [awat\_enabled\_cloudwatch\_logs\_exports](#input\_awat\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [awat\_enabled\_cloudwatch\_logs\_exports](#input\_awat\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [awat\_kms\_key](#input\_awat\_kms\_key) | n/a | `string` | n/a | yes | | [awat\_max\_capacity](#input\_awat\_max\_capacity) | n/a | `number` | `4` | no | | [awat\_min\_capacity](#input\_awat\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/blapi/README.md b/aws/blapi/README.md index d90a4c05..b26e800d 100644 --- a/aws/blapi/README.md +++ b/aws/blapi/README.md @@ -52,7 +52,7 @@ | [blapi\_db\_cluster\_instance\_identifier](#input\_blapi\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [blapi\_db\_cluster\_instance\_type](#input\_blapi\_db\_cluster\_instance\_type) | n/a | `string` | `"db.t4g.medium"` | no | | [blapi\_enable\_rds\_alerting](#input\_blapi\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [blapi\_enabled\_cloudwatch\_logs\_exports](#input\_blapi\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [blapi\_enabled\_cloudwatch\_logs\_exports](#input\_blapi\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [blapi\_kms\_key](#input\_blapi\_kms\_key) | n/a | `string` | n/a | yes | | [blapi\_max\_capacity](#input\_blapi\_max\_capacity) | n/a | `number` | `4` | no | | [blapi\_min\_capacity](#input\_blapi\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/calls-offloader-storage/README.md b/aws/calls-offloader-storage/README.md index 74dd91a4..8025529d 100644 --- a/aws/calls-offloader-storage/README.md +++ b/aws/calls-offloader-storage/README.md @@ -49,7 +49,7 @@ No modules. | [root\_kms\_key\_id](#input\_root\_kms\_key\_id) | Optional KMS Key ID for encrypting the root volume of the NFS server. Leave empty to use the default AWS-managed KMS key. | `string` | `""` | no | | [root\_volume\_size](#input\_root\_volume\_size) | Size of the root volume in GiB for the NFS server. | `number` | `20` | no | | [volume\_type](#input\_volume\_type) | Type of volumefor the NFS server. | `string` | `"gp3"` | no | -| [vpc\_configurations](#input\_vpc\_configurations) | Map of VPC configurations, including VPC ID and subnets. | 
map(object({
    vpc_id     = string
    subnet_ids = list(string)
  }))
| n/a | yes | +| [vpc\_configurations](#input\_vpc\_configurations) | Map of VPC configurations, including VPC ID and subnets. | 
map(object({
    vpc_id     = string
    subnet_ids = list(string)
  }))
| n/a | yes | ## Outputs diff --git a/aws/community-rds-infra/README.md b/aws/community-rds-infra/README.md index 4ba2df4b..f79de6c2 100644 --- a/aws/community-rds-infra/README.md +++ b/aws/community-rds-infra/README.md @@ -28,7 +28,7 @@ No modules. |------|-------------|------|---------|:--------:| | [private\_hosted\_zoneid](#input\_private\_hosted\_zoneid) | The ID of the Route53 private hosted zone | `string` | n/a | yes | | [rds\_reader\_hostnames](#input\_rds\_reader\_hostnames) | The RDS reader hostname, must be 3 elements. The first element is the generic reader hostname, the second is the primary reader, and the third is the secondary reader. | `list(string)` | n/a | yes | -| [rds\_reader\_records](#input\_rds\_reader\_records) | The RDS reader records, must be 3 elements. The first element is the generic reader record, the second is the primary reader, and the third is the secondary reader. | `list(string)` | 
[
  "community-db-ro",
  "community-db-reader1",
  "community-db-reader2"
]
| no | +| [rds\_reader\_records](#input\_rds\_reader\_records) | The RDS reader records, must be 3 elements. The first element is the generic reader record, the second is the primary reader, and the third is the secondary reader. | `list(string)` | 
[
  "community-db-ro",
  "community-db-reader1",
  "community-db-reader2"
]
| no | | [rds\_writer\_hostname](#input\_rds\_writer\_hostname) | The RDS writer hostname | `string` | n/a | yes | ## Outputs diff --git a/aws/cross-account-private-link-eks-private-target-account/README.md b/aws/cross-account-private-link-eks-private-target-account/README.md index 01b65aa3..36892050 100644 --- a/aws/cross-account-private-link-eks-private-target-account/README.md +++ b/aws/cross-account-private-link-eks-private-target-account/README.md @@ -45,7 +45,7 @@ No modules. | [check\_nlb](#input\_check\_nlb) | n/a | `bool` | `false` | no | | [cluster\_name](#input\_cluster\_name) | Name of the EKS cluster to create or validate | `string` | n/a | yes | | [create\_private\_endpoint](#input\_create\_private\_endpoint) | Flag to indicate if the EKS cluster should have a private endpoint only | `bool` | `true` | no | -| [eks\_cluster\_tags](#input\_eks\_cluster\_tags) | n/a | `map(string)` | 
{
  "Name": "EKS Cluster Private link POC"
}
| no | +| [eks\_cluster\_tags](#input\_eks\_cluster\_tags) | n/a | `map(string)` | 
{
  "Name": "EKS Cluster Private link POC"
}
| no | | [environment](#input\_environment) | Environment name | `string` | n/a | yes | | [instance\_type](#input\_instance\_type) | Type of EC2 instance | `string` | `"t2.micro"` | no | | [key\_name](#input\_key\_name) | n/a | `string` | `""` | no | @@ -53,7 +53,7 @@ No modules. | [nlb\_name](#input\_nlb\_name) | Name of the Network Load Balancer | `string` | n/a | yes | | [proxy\_security\_group\_ids](#input\_proxy\_security\_group\_ids) | Security Groups for the proxy instance | `list(string)` | n/a | yes | | [proxy\_subnet\_id](#input\_proxy\_subnet\_id) | Subnet ID where the instance will be deployed | `string` | n/a | yes | -| [proxy\_tags](#input\_proxy\_tags) | n/a | `map(string)` | 
{
  "Name": "Proxy Instance POC"
}
| no | +| [proxy\_tags](#input\_proxy\_tags) | n/a | `map(string)` | 
{
  "Name": "Proxy Instance POC"
}
| no | | [security\_group\_ids](#input\_security\_group\_ids) | Security Groups for the EKS cluster | `list(string)` | n/a | yes | | [subnet\_ids](#input\_subnet\_ids) | Subnets used by the EKS cluster | `list(string)` | n/a | yes | | [target\_group\_name](#input\_target\_group\_name) | Name of the target group for NLB | `string` | n/a | yes | diff --git a/aws/cross-account-private-link-service-source-account/README.md b/aws/cross-account-private-link-service-source-account/README.md index d26ed056..fb3395f8 100644 --- a/aws/cross-account-private-link-service-source-account/README.md +++ b/aws/cross-account-private-link-service-source-account/README.md @@ -41,7 +41,7 @@ No modules. | [ami\_id](#input\_ami\_id) | AMI ID to be used for the instance | `string` | n/a | yes | | [check\_nlb](#input\_check\_nlb) | n/a | `bool` | `false` | no | | [environment](#input\_environment) | Environment name | `string` | n/a | yes | -| [instance\_tags](#input\_instance\_tags) | n/a | `map(string)` | 
{
  "Name": "Service Instance POC"
}
| no | +| [instance\_tags](#input\_instance\_tags) | n/a | `map(string)` | 
{
  "Name": "Service Instance POC"
}
| no | | [instance\_type](#input\_instance\_type) | Type of EC2 instance | `string` | `"t2.micro"` | no | | [listener\_port](#input\_listener\_port) | Listener port for NLB | `number` | `80` | no | | [nlb\_name](#input\_nlb\_name) | Name of the Network Load Balancer | `string` | n/a | yes | diff --git a/aws/customer-web-server/README.md b/aws/customer-web-server/README.md index 42971fe0..3d65a2b7 100644 --- a/aws/customer-web-server/README.md +++ b/aws/customer-web-server/README.md @@ -53,7 +53,7 @@ | [cws\_db\_username](#input\_cws\_db\_username) | n/a | `string` | n/a | yes | | [cws\_enable\_bastion](#input\_cws\_enable\_bastion) | n/a | `bool` | `true` | no | | [cws\_enable\_rds\_alerting](#input\_cws\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [cws\_enabled\_cloudwatch\_logs\_exports](#input\_cws\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [cws\_enabled\_cloudwatch\_logs\_exports](#input\_cws\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [cws\_kms\_key](#input\_cws\_kms\_key) | n/a | `string` | n/a | yes | | [cws\_max\_capacity](#input\_cws\_max\_capacity) | n/a | `number` | `4` | no | | [cws\_min\_capacity](#input\_cws\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/eks-customer/README.md b/aws/eks-customer/README.md index 7063b03f..abd1b611 100644 --- a/aws/eks-customer/README.md +++ b/aws/eks-customer/README.md @@ -84,7 +84,7 @@ | [cluster\_endpoint\_private\_access](#input\_cluster\_endpoint\_private\_access) | Indicates whether or not the Amazon EKS private API server endpoint is enabled | `bool` | n/a | yes | | [cluster\_endpoint\_public\_access](#input\_cluster\_endpoint\_public\_access) | Indicates whether or not the Amazon EKS public API server endpoint is enabled | `bool` | n/a | yes | | [cluster\_name](#input\_cluster\_name) | The cluster name | `string` | n/a | yes | -| [cluster\_security\_group\_additional\_rules](#input\_cluster\_security\_group\_additional\_rules) | The list of additional security group rules for the EKS cluster | 
map(object({
    from_port   = number
    to_port     = number
    protocol    = string
    cidr_blocks = list(string)
    type        = string
  }))
| n/a | yes | +| [cluster\_security\_group\_additional\_rules](#input\_cluster\_security\_group\_additional\_rules) | The list of additional security group rules for the EKS cluster | 
map(object({
    from_port   = number
    to_port     = number
    protocol    = string
    cidr_blocks = list(string)
    type        = string
  }))
| n/a | yes | | [cluster\_tags](#input\_cluster\_tags) | A map of tags to add to all resources | `map(string)` | `{}` | no | | [cluster\_version](#input\_cluster\_version) | The Kubernetes version for the EKS cluster | `string` | n/a | yes | | [coredns\_version](#input\_coredns\_version) | The version of the CoreDNS addon | `string` | n/a | yes | @@ -112,7 +112,7 @@ | [snapshot\_controller\_version](#input\_snapshot\_controller\_version) | n/a | `string` | n/a | yes | | [staff\_role\_arn](#input\_staff\_role\_arn) | The staff role arn | `string` | n/a | yes | | [use\_name\_prefix](#input\_use\_name\_prefix) | Determines whether to use `name` as is or create a unique name beginning with the `name` as the prefix | `bool` | `false` | no | -| [utilities](#input\_utilities) | The list of utilities | 
list(object({
    name               = string
    enable_irsa        = bool
    internal_dns       = any
    service_account    = string
    cluster_label_type = string
  }))
| n/a | yes | +| [utilities](#input\_utilities) | The list of utilities | 
list(object({
    name               = string
    enable_irsa        = bool
    internal_dns       = any
    service_account    = string
    cluster_label_type = string
  }))
| n/a | yes | | [volume\_delete\_on\_termination](#input\_volume\_delete\_on\_termination) | Indicates whether the EBS volume is deleted on termination | `bool` | `true` | no | | [volume\_encrypted](#input\_volume\_encrypted) | Indicates whether the EBS volume is encrypted | `bool` | `true` | no | | [volume\_iops](#input\_volume\_iops) | The amount of provisioned IOPS | `number` | `3000` | no | diff --git a/aws/elasticsearch/README.md b/aws/elasticsearch/README.md index 242bb326..af0f2715 100644 --- a/aws/elasticsearch/README.md +++ b/aws/elasticsearch/README.md @@ -54,7 +54,7 @@ No modules. | [dedicated\_master\_enabled](#input\_dedicated\_master\_enabled) | n/a | `bool` | n/a | yes | | [dedicated\_master\_type](#input\_dedicated\_master\_type) | n/a | `string` | n/a | yes | | [domain\_name](#input\_domain\_name) | n/a | `string` | n/a | yes | -| [elasticsearch\_access\_policy\_principal](#input\_elasticsearch\_access\_policy\_principal) | Which AWS resources should have access to the Elasticsearch cluster | `list(string)` | 
[
  "*"
]
| no | +| [elasticsearch\_access\_policy\_principal](#input\_elasticsearch\_access\_policy\_principal) | Which AWS resources should have access to the Elasticsearch cluster | `list(string)` | 
[
  "*"
]
| no | | [environment](#input\_environment) | n/a | `string` | n/a | yes | | [es\_instance\_type](#input\_es\_instance\_type) | n/a | `string` | n/a | yes | | [es\_version](#input\_es\_version) | n/a | `string` | n/a | yes | diff --git a/aws/elrond/README.md b/aws/elrond/README.md index 4614d5b5..47189960 100644 --- a/aws/elrond/README.md +++ b/aws/elrond/README.md @@ -51,7 +51,7 @@ | [elrond\_db\_cluster\_instance\_identifier](#input\_elrond\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [elrond\_db\_cluster\_instance\_type](#input\_elrond\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [elrond\_enable\_rds\_alerting](#input\_elrond\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [elrond\_enabled\_cloudwatch\_logs\_exports](#input\_elrond\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [elrond\_enabled\_cloudwatch\_logs\_exports](#input\_elrond\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [elrond\_kms\_key](#input\_elrond\_kms\_key) | n/a | `string` | n/a | yes | | [elrond\_max\_capacity](#input\_elrond\_max\_capacity) | n/a | `number` | `4` | no | | [elrond\_min\_capacity](#input\_elrond\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/grafana/README.md b/aws/grafana/README.md index c8ad1595..e6740fb8 100644 --- a/aws/grafana/README.md +++ b/aws/grafana/README.md @@ -52,7 +52,7 @@ | [grafana\_db\_cluster\_instance\_identifier](#input\_grafana\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [grafana\_db\_cluster\_instance\_type](#input\_grafana\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [grafana\_enable\_rds\_alerting](#input\_grafana\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [grafana\_enabled\_cloudwatch\_logs\_exports](#input\_grafana\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [grafana\_enabled\_cloudwatch\_logs\_exports](#input\_grafana\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [grafana\_kms\_key](#input\_grafana\_kms\_key) | n/a | `string` | n/a | yes | | [grafana\_max\_capacity](#input\_grafana\_max\_capacity) | n/a | `number` | `4` | no | | [grafana\_min\_capacity](#input\_grafana\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/import-export/README.md b/aws/import-export/README.md index d009fece..415977d6 100644 --- a/aws/import-export/README.md +++ b/aws/import-export/README.md @@ -40,7 +40,7 @@ No modules. | [other\_account\_id](#input\_other\_account\_id) | AWS Account ID that needs access to the KMS key | `string` | n/a | yes | | [other\_account\_role\_name](#input\_other\_account\_role\_name) | Role name in the other AWS account that needs access to the KMS key | `string` | n/a | yes | | [other\_account\_user\_name](#input\_other\_account\_user\_name) | User name in the other AWS account that needs access to the KMS key | `string` | n/a | yes | -| [s3\_bucket\_encryption](#input\_s3\_bucket\_encryption) | n/a | 
map(object({
    sse_algorithm      = string
    kms_master_key_id  = string
    bucket_key_enabled = bool
  }))
| `{}` | no | +| [s3\_bucket\_encryption](#input\_s3\_bucket\_encryption) | n/a | 
map(object({
    sse_algorithm      = string
    kms_master_key_id  = string
    bucket_key_enabled = bool
  }))
| `{}` | no | | [s3\_bucket\_policies](#input\_s3\_bucket\_policies) | Map of bucket names to their respective policies | `map(string)` | `{}` | no | | [s3\_bucket\_tags](#input\_s3\_bucket\_tags) | n/a | `map(map(string))` | `{}` | no | | [s3\_buckets](#input\_s3\_buckets) | List of S3 buckets to manage | `list(string)` | `[]` | no | diff --git a/aws/provisioner/README.md b/aws/provisioner/README.md index 3c6693ba..16dcfa5b 100644 --- a/aws/provisioner/README.md +++ b/aws/provisioner/README.md @@ -59,7 +59,7 @@ | [provisioner\_db\_cluster\_instance\_identifier](#input\_provisioner\_db\_cluster\_instance\_identifier) | n/a | `string` | n/a | yes | | [provisioner\_db\_cluster\_instance\_type](#input\_provisioner\_db\_cluster\_instance\_type) | n/a | `string` | `"db.serverless"` | no | | [provisioner\_enable\_rds\_alerting](#input\_provisioner\_enable\_rds\_alerting) | n/a | `bool` | `false` | no | -| [provisioner\_enabled\_cloudwatch\_logs\_exports](#input\_provisioner\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | +| [provisioner\_enabled\_cloudwatch\_logs\_exports](#input\_provisioner\_enabled\_cloudwatch\_logs\_exports) | n/a | `list(string)` | 
[
  "postgresql"
]
| no | | [provisioner\_kms\_key](#input\_provisioner\_kms\_key) | n/a | `string` | n/a | yes | | [provisioner\_max\_capacity](#input\_provisioner\_max\_capacity) | n/a | `number` | `4` | no | | [provisioner\_min\_capacity](#input\_provisioner\_min\_capacity) | n/a | `number` | `0.5` | no | diff --git a/aws/rds-cloudwatch-alarms/README.md b/aws/rds-cloudwatch-alarms/README.md index 61872358..f0c6c6a1 100644 --- a/aws/rds-cloudwatch-alarms/README.md +++ b/aws/rds-cloudwatch-alarms/README.md @@ -32,7 +32,7 @@ No modules. | [instance\_type](#input\_instance\_type) | The rds database instance type to calculate the alarm limits | `string` | n/a | yes | | [memory\_alarm\_limit](#input\_memory\_alarm\_limit) | Limit to trigger memory alarm. Number in Bytes (100MB) | `string` | `"100000000"` | no | | [memory\_cache\_proportion](#input\_memory\_cache\_proportion) | Proportion of memory that is used for cache. By default it is 75%. | `number` | `0.75` | no | -| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.m6g.large": "8589934592",
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | +| [ram\_memory\_bytes](#input\_ram\_memory\_bytes) | The RAM memory of each instance type in Bytes. | `map(any)` | 
{
  "db.m6g.large": "8589934592",
  "db.r5.12xlarge": "412316860416",
  "db.r5.16xlarge": "549755813888",
  "db.r5.24xlarge": "824633720832",
  "db.r5.2xlarge": "68719476736",
  "db.r5.4xlarge": "137438953472",
  "db.r5.8xlarge": "274877906944",
  "db.r5.large": "17179869184",
  "db.r5.xlarge": "34359738368",
  "db.r6g.12xlarge": "412316860416",
  "db.r6g.16xlarge": "549755813888",
  "db.r6g.24xlarge": "824633720832",
  "db.r6g.2xlarge": "68719476736",
  "db.r6g.4xlarge": "137438953472",
  "db.r6g.8xlarge": "274877906944",
  "db.r6g.large": "17179869184",
  "db.r6g.xlarge": "34359738368",
  "db.t3.large": "8589934592",
  "db.t3.medium": "4294967296",
  "db.t3.small": "2147483648",
  "db.t4g.large": "8589934592",
  "db.t4g.medium": "4294967296",
  "db.t4g.small": "2147483648"
}
| no | | [sns\_topic](#input\_sns\_topic) | The sns topic name to sent cloudwatch alarms | `string` | n/a | yes | | [tags](#input\_tags) | A map of tags to assign to the resource | `map(string)` | `{}` | no | diff --git a/aws/transit-gateway-setup/README.md b/aws/transit-gateway-setup/README.md index 5bae9c48..35fff239 100644 --- a/aws/transit-gateway-setup/README.md +++ b/aws/transit-gateway-setup/README.md @@ -50,7 +50,7 @@ No modules. | [security\_destination\_cidr\_block](#input\_security\_destination\_cidr\_block) | Value of the cidr block for the security TGW | `string` | n/a | yes | | [security\_group\_referencing\_support](#input\_security\_group\_referencing\_support) | Security Group Referencing allows to specify other SGs as references, or matching criterion in inbound security rules to allow instance-to-instance traffic | `string` | `"enable"` | no | | [tags](#input\_tags) | Additional tags for the RAM | `map(string)` | `{}` | no | -| [tgw\_attachment\_subnet\_ids](#input\_tgw\_attachment\_subnet\_ids) | The Subnet IDs in the prod us-west-2 region we want to attach to the TGW | `list(string)` | 
[
  ""
]
| no | +| [tgw\_attachment\_subnet\_ids](#input\_tgw\_attachment\_subnet\_ids) | The Subnet IDs in the prod us-west-2 region we want to attach to the TGW | `list(string)` | 
[
  ""
]
| no | | [tgw\_attachment\_vpc\_id](#input\_tgw\_attachment\_vpc\_id) | The VPC in the cross region we want to attach to the TGW | `string` | n/a | yes | | [tgw\_peering\_attachment\_name](#input\_tgw\_peering\_attachment\_name) | The name of the peering attachment | `string` | n/a | yes |