Merge branch 'development' into feature/iam.tf

author: Alex <git@ajschof.me> 2024-08-15 10:58:29 +0100
committer: GitHub <noreply@github.com> 2024-08-15 10:58:29 +0100
commit: 6f56669befb9cf366b83a30b8ddce0030b7b15ee (patch)
tree: 8a67764e4d1323ba24c5bbe24f9d1aa9cb3366f0 /terraform/rds.tf
parent: 670b7d6858fcd5fc11ae59aa90528cbcab49456f (diff)
parent: a1cbded6b145b6cba75180b218d7445a51c39f4f (diff)
download: de-project-bentley-6f56669befb9cf366b83a30b8ddce0030b7b15ee.tar.gz
de-project-bentley-6f56669befb9cf366b83a30b8ddce0030b7b15ee.zip
1 files changed, 78 insertions, 0 deletions
diff --git a/terraform/rds.tf b/terraform/rds.tf
new file mode 100644
index 0000000..4b25c5f
--- /dev/null
+++ b/terraform/rds.tf
@@ -0,0 +1,78 @@
+data "aws_availability_zones" "available" {}
+
+module "vpc" {
+  source  = "terraform-aws-modules/vpc/aws"
+  version = "2.77.0"
+
+  name                 = "${var.project_name}"
+  cidr                 = "10.0.0.0/16"
+  azs                  = data.aws_availability_zones.available.names
+  public_subnets       = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
+  enable_dns_hostnames = true
+  enable_dns_support   = true
+}
+
+resource "aws_db_subnet_group" "Terrific-Totes-sub-gr" {
+  name       = "TT-db-subnet"
+  subnet_ids = module.vpc.public_subnets
+
+  tags = {
+    Name = "${var.project_name}"
+  }
+}
+
+resource "aws_security_group" "rds" {
+  name   = "${var.project_name}-rds"
+  vpc_id = module.vpc.vpc_id
+
+  ingress {
+    from_port   = 5432
+    to_port     = 5432
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  egress {
+    from_port   = 5432
+    to_port     = 5432
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = {
+    Name = "${var.project_name}-rds"
+  }
+}
+
+resource "aws_db_parameter_group" "Terrific-Totes-param-gr" {
+  name   = "TT-db-param"
+  family = "postgres14"
+
+  parameter {
+    name  = "log_connections"
+    value = "1"
+  }
+}
+
+resource "aws_db_instance" "Terrific-Totes-rds" {
+  db_name                = "${var.project_name}"
+  instance_class         = "db.t3.micro"
+  allocated_storage      = 5
+  engine                 = "postgres"
+  engine_version         = "14.1"
+  username               = "user credentials for the root user" # we could use .env here
+  password               = "user password for the root user" # we could use .env here
+  ### alternatively to providing username nad password we can specify:
+# resource "aws_kms_key" "example_key" {
+#       description = "Example KMS Key"
+# }
+# within the resource:
+#   manage_master_user_password   = true
+#   master_user_secret_kms_key_id = aws_kms_key.example.key_id
+# }
+  db_subnet_group_name   = aws_db_subnet_group.Terrific-Totes-sub-gr.name
+  vpc_security_group_ids = [aws_security_group.rds.id]
+  parameter_group_name   = aws_db_parameter_group.Terrific-Totes-param-gr.name
+  publicly_accessible    = false
+  skip_final_snapshot    = true
+}
+\ No newline at end of file
author	Alex <git@ajschof.me>	2024-08-15 10:58:29 +0100
committer	GitHub <noreply@github.com>	2024-08-15 10:58:29 +0100
commit	6f56669befb9cf366b83a30b8ddce0030b7b15ee (patch)
tree	8a67764e4d1323ba24c5bbe24f9d1aa9cb3366f0 /terraform/rds.tf
parent	670b7d6858fcd5fc11ae59aa90528cbcab49456f (diff)
parent	a1cbded6b145b6cba75180b218d7445a51c39f4f (diff)
download	de-project-bentley-6f56669befb9cf366b83a30b8ddce0030b7b15ee.tar.gz de-project-bentley-6f56669befb9cf366b83a30b8ddce0030b7b15ee.zip