Initial commit

guillermo-musumeci · web-flow · commit 6eae579b196a · 2022-02-10T11:15:28.000+01:00
diff --git a/app-variables.tf b/app-variables.tf
@@ -0,0 +1,15 @@
+####################################
+## Application Module - Variables ##
+####################################
+
+# Application definition
+
+variable "app_name" {
+  type        = string
+  description = "Application name"
+}
+
+variable "app_environment" {
+  type        = string
+  description = "Application environment"
+}
diff --git a/aws-user-data.sh b/aws-user-data.sh
@@ -0,0 +1,6 @@
+#! /bin/bash
+sudo apt-get update
+sudo apt-get install -y apache2
+sudo systemctl start apache2
+sudo systemctl enable apache2
+echo "<h1>Test AWS</h1>" | sudo tee /var/www/html/index.html
diff --git a/key-pair-main.tf b/key-pair-main.tf
@@ -0,0 +1,21 @@
+#####################
+## Key Pair - Main ##
+#####################
+
+# Generates a secure private key and encodes it as PEM
+resource "tls_private_key" "key_pair" {
+  algorithm = "RSA"
+  rsa_bits  = 4096
+}
+
+# Create the Key Pair
+resource "aws_key_pair" "key_pair" {
+  key_name   = "${lower(var.app_name)}-${lower(var.app_environment)}-linux-${lower(var.aws_region)}"  
+  public_key = tls_private_key.key_pair.public_key_openssh
+}
+
+# Save file
+resource "local_file" "ssh_key" {
+  filename = "${aws_key_pair.key_pair.key_name}.pem"
+  content  = tls_private_key.key_pair.private_key_pem
+}
diff --git a/linux-vm-main.tf b/linux-vm-main.tf
@@ -0,0 +1,87 @@
+###################################
+## Virtual Machine Module - Main ##
+###################################
+
+# Create Elastic IP for the EC2 instance
+resource "aws_eip" "linux-eip" {
+  vpc  = true
+  tags = {
+    Name        = "${lower(var.app_name)}-${var.app_environment}-linux-eip"
+    Environment = var.app_environment
+  }
+}
+
+# Create EC2 Instance
+resource "aws_instance" "linux-server" {
+  ami                         = data.aws_ami.ubuntu-linux-1804.id
+  instance_type               = var.linux_instance_type
+  subnet_id                   = aws_subnet.public-subnet.id
+  vpc_security_group_ids      = [aws_security_group.aws-linux-sg.id]
+  associate_public_ip_address = var.linux_associate_public_ip_address
+  source_dest_check           = false
+  key_name                    = aws_key_pair.key_pair.key_name
+  user_data                   = file("aws-user-data.sh")
+  
+  # root disk
+  root_block_device {
+    volume_size           = var.linux_root_volume_size
+    volume_type           = var.linux_root_volume_type
+    delete_on_termination = true
+    encrypted             = true
+  }
+
+  # extra disk
+  ebs_block_device {
+    device_name           = "/dev/xvda"
+    volume_size           = var.linux_data_volume_size
+    volume_type           = var.linux_data_volume_type
+    encrypted             = true
+    delete_on_termination = true
+  }
+  
+  tags = {
+    Name        = "${lower(var.app_name)}-${var.app_environment}-linux-server"
+    Environment = var.app_environment
+  }
+}
+
+# Associate Elastic IP to Linux Server
+resource "aws_eip_association" "linux-eip-association" {
+  instance_id   = aws_instance.linux-server.id
+  allocation_id = aws_eip.linux-eip.id
+}
+
+# Define the security group for the Linux server
+resource "aws_security_group" "aws-linux-sg" {
+  name        = "${lower(var.app_name)}-${var.app_environment}-linux-sg"
+  description = "Allow incoming HTTP connections"
+  vpc_id      = aws_vpc.vpc.id
+
+  ingress {
+    from_port   = 80
+    to_port     = 80
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+    description = "Allow incoming HTTP connections"
+  }
+
+  ingress {
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+    description = "Allow incoming SSH connections"
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = {
+    Name        = "${lower(var.app_name)}-${var.app_environment}-linux-sg"
+    Environment = var.app_environment
+  }
+}
diff --git a/linux-vm-output.tf b/linux-vm-output.tf
@@ -0,0 +1,19 @@
+#####################################
+## Virtual Machine Module - Output ##
+#####################################
+
+output "vm_linux_server_instance_id" {
+  value = aws_instance.linux-server.id
+}
+
+output "vm_linux_server_instance_public_dns" {
+  value = aws_instance.linux-server.public_dns
+}
+
+output "vm_linux_server_instance_public_ip" {
+  value = aws_instance.linux-server.public_ip
+}
+
+output "vm_linux_server_instance_private_ip" {
+  value = aws_instance.linux-server.private_ip
+}
diff --git a/linux-vm-variables.tf b/linux-vm-variables.tf
@@ -0,0 +1,37 @@
+########################################
+## Virtual Machine Module - Variables ##
+########################################
+
+variable "linux_instance_type" {
+  type        = string
+  description = "EC2 instance type for Linux Server"
+  default     = "t2.micro"
+}
+
+variable "linux_associate_public_ip_address" {
+  type        = bool
+  description = "Associate a public IP address to the EC2 instance"
+  default     = true
+}
+
+variable "linux_root_volume_size" {
+  type        = number
+  description = "Volumen size of root volumen of Linux Server"
+}
+
+variable "linux_data_volume_size" {
+  type        = number
+  description = "Volumen size of data volumen of Linux Server"
+}
+
+variable "linux_root_volume_type" {
+  type        = string
+  description = "Volumen type of root volumen of Linux Server. Can be standard, gp3, gp2, io1, sc1 or st1"
+  default     = "gp2"
+}
+
+variable "linux_data_volume_type" {
+  type        = string
+  description = "Volumen type of data volumen of Linux Server. Can be standard, gp3, gp2, io1, sc1 or st1"
+  default     = "gp2"
+}
diff --git a/network-main.tf b/network-main.tf
@@ -0,0 +1,52 @@
+##########################################
+## Network Single AZ Public Only - Main ##
+##########################################
+
+# Create the VPC
+resource "aws_vpc" "vpc" {
+  cidr_block = var.vpc_cidr
+  enable_dns_hostnames = true
+  tags = {
+    Name = "${lower(var.app_name)}-${lower(var.app_environment)}-vpc"
+    Environment = var.app_environment
+  }
+}
+
+# Define the public subnet
+resource "aws_subnet" "public-subnet" {
+  vpc_id = aws_vpc.vpc.id
+  cidr_block = var.vpc_public_subnet_cidr
+  availability_zone = var.aws_az
+  tags = {
+    Name = "${lower(var.app_name)}-${lower(var.app_environment)}-public-subnet"
+    Environment = var.app_environment
+  }
+}
+
+# Define the internet gateway
+resource "aws_internet_gateway" "gw" {
+  vpc_id = aws_vpc.vpc.id
+  tags = {
+    Name = "${lower(var.app_name)}-${lower(var.app_environment)}-igw"
+    Environment = var.app_environment
+  }
+}
+
+# Define the public route table
+resource "aws_route_table" "public-rt" {
+  vpc_id = aws_vpc.vpc.id
+  route {
+    cidr_block = "0.0.0.0/0"
+    gateway_id = aws_internet_gateway.gw.id
+  }
+  tags = {
+    Name = "${lower(var.app_name)}-${lower(var.app_environment)}-public-subnet-rt"
+    Environment = var.app_environment
+  }
+}
+
+# Assign the public route table to the public subnet
+resource "aws_route_table_association" "public-rt-association" {
+  subnet_id = aws_subnet.public-subnet.id
+  route_table_id = aws_route_table.public-rt.id
+}
diff --git a/network-variables.tf b/network-variables.tf
@@ -0,0 +1,21 @@
+##############################################
+## Network Single AZ Public Only - Variables #
+##############################################
+
+# AWS AZ
+variable "aws_az" {
+  description = "AWS AZ"
+  default = "eu-west-1c"
+}
+
+# VPC Variables
+variable "vpc_cidr" {
+  description = "CIDR for the VPC"
+  default = "10.1.64.0/18"
+}
+
+# Subnet Variables
+variable "vpc_public_subnet_cidr" {
+  description = "CIDR for the public subnet"
+  default = "10.1.64.0/24"
+}
diff --git a/provider-main.tf b/provider-main.tf
@@ -0,0 +1,20 @@
+################################
+## AWS Provider Module - Main ##
+################################
+
+# AWS Provider
+terraform {
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 3.0"
+    }
+  }
+}
+
+provider "aws" {
+  access_key = var.aws_access_key
+  secret_key = var.aws_secret_key
+  region     = var.aws_region
+}
+
diff --git a/provider-variables.tf b/provider-variables.tf
@@ -0,0 +1,21 @@
+#####################################
+## AWS Provider Module - Variables ##
+#####################################
+
+# AWS connection & authentication
+
+variable "aws_access_key" {
+  type = string
+  description = "AWS access key"
+}
+
+variable "aws_secret_key" {
+  type = string
+  description = "AWS secret key"
+}
+
+variable "aws_region" {
+  type = string
+  description = "AWS region"
+}
+
diff --git a/ubuntu-ami.tf b/ubuntu-ami.tf
