dropshare
aws-ia/dropshare/awscc
Terraform Module to create resources for a Dropshare Connection with AWS S3 and AWS CloudFront.
Dropshare Connection - AWS S3 > Terraform Module to create resources for a Dropshare Connection with AWS S3 and AWS CloudFront. Table of Contents - Dropshare Connection: AWS S3 - Table of Contents - Overview - Usage - Dropshare - Inputs - Outputs - Notes - Author Information - License Overview This Terraform Module creates the required resources to create an S3 Connection for Dropshare. !Resource Overview for Module ``mermaid graph TD; dns_a[DNS Record, type A] --> tls; dns_aaaa[DNS Record, type AAAA] --> tls; tls[TLS Certificate] --> cloudfront; cloudfront[CloudFront Distribution]; bucket[S3 Bucket] --> cloudfront; user[IAM User] --> bucket; ` Usage This section contains the input and output values of this module as well as information on how to configure Dropshare. Dropshare To configure
| Name | Type | Description | Default |
|---|---|---|---|
| keybase_user | string | KeyBase username for use in the `encrypted_secret` output attribute. | |
| route53_record_subdomain | string | Subdomain Record to create in the Route53 Hosted Zone. | |
| routed53_zone_id | string | ID of the Route53 Hosted Zone. | |
| bucket_index_file | string | Path to template file to use as Index for Bucket. | "files/index.html" |
| iam_group_path | string | IAM Group Path for Service Accounts. | "/services/" |
| lock_policy_to_ip_address | bool | Toggle to enable constraining of IAM Policy to user-provided IP Address. | true |
| bucket_name | string | Name of the S3 Bucket. When left empty, a random name will be generated. | "" |
| bucket_storage_class | string | The class of storage used to store the object. | "ONEZONE_IA" |
| create_index_file | bool | Boolean Toggle to enable creation of Index File (`var.bucket_index_file`) in Buc | true |
| create_robotstxt_file | bool | Boolean Toggle to enable creation of Robots File (`var.bucket_robotstxt_file`) i | true |
| bucket_robotstxt_file | string | Path to template file to use as `robots.txt` for Bucket. | "files/robots.txt" |
| cloudfront_cache_policy_id | string | ID of AWS-managed Cache Policy. | "658327ea-f89d-4fab-a63d-7e88639e58f6" |
| cloudfront_origin_request_policy_id | string | ID of AWS-managed Origin Request Policy. | "59781a5b-3903-41f3-afcb-af62929ccde1" |
| cloudfront_response_headers_policy_id | string | ID of AWS-managed Response Headers Policy. | "67f7725c-6f97-4210-82d7-5512b31e9d03" |
| iam_ip_address_retrieval_service | string | URL for (Public) IP Address Retrieval Service. | "https://checkip.amazonaws.com/" |
| cloudfront_comment | string | Comment to assign to CloudFront resources. | "Terraform-managed Resource for Dropshar |
| cloudfront_minimum_protocol_version | string | The minimum version of the TLS protocol that you want CloudFront to use for HTTP | "TLSv1.2_2021" |
| cloudfront_zone_id | string | ID of the CloudFront Route53 Hosted Zone. | "Z2FDTNDATAQYW2" |
| caller_ip_address | string | IP Address to constrain IAM Policy to. If left empty, this will be replaced with | "" |
secret_key_decrypt_command_append — Appended part of Command to decrypt IAM Secret Key.domain_alias — Domain Alias for CloudFront Distribution.access_key_id — IAM Access Key.bucket_id — S3 Bucket ARN.bucket_name — S3 Bucket Name.region — S3 Bucket Region.secret_key — (encrypted) IAM Secret Key.secret_key_decrypt_command_prepend — Prepended part of Command to decrypt IAM Secret Key.Azure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,