opensearch-domain
dod-iac/opensearch-domain/aws
An Amazon OpenSearch Service domain
Usage Creates an Amazon OpenSearch Service domain with secure defaults. This module always requires node-to-node encryption, encryption at rest, HTTPS endpoints, and use of a VPC. ``hcl module "opensearch_kms_key" { source = "dod-iac/opensearch-kms-key/aws" name = format("alias/app-%s-opensearch-%s", var.application, var.environment) description = format("A KMS key used to encrypt data in Amazon OpenSearch Service for %s:%s.", var.application, var.environment) principals = ["*"] tags = { Application = var.application Environment = var.environment Automation = "Terraform" } } module "opensearch_domain" { source = "dod-iac/opensearch-domain/aws" name = format("app-%s-%s", var.application, var.environment) kms_key_arn = module.opensearch_kms_key.aws_kms_key_arn ingress_cidr_blocks = ["0.0.0.0
| Name | Type | Description | Default |
|---|---|---|---|
| vpc_id | string | The ID of the VPC that the security group for the Amazon OpenSearch Service doma | |
| name | string | Name of the Amazon OpenSearch Service domain. | |
| dedicated_master_enabled | bool | Use dedicated master nodes with the Amazon OpenSearch Service domain. | false |
| ingress_security_groups | list(string) | A list of EC2 security groups to allow access to the Amazon OpenSearch Service d | [] |
| security_group_name | string | The name of the EC2 security group used by the Amazon OpenSearch Service domain. | "" |
| subnet_ids | list(string) | List of VPC Subnet IDs for the Amazon OpenSearch Service domain endpoints to be | [] |
| warm_enabled | bool | Enable UltraWarm data nodes for the domain to economically retain large amounts | false |
| automated_snapshot_start_hour | string | Hour during which the service takes an automated daily snapshot of the indices i | 23 |
| dedicated_master_instance_type | string | Instance type of the dedicated main nodes in the cluster. If not provided, then | "" |
| ingress_cidr_blocks | list(string) | A list of CIDR blocks to allow access to the Amazon OpenSearch Service domain. | [] |
| max_clause_count | number | Specifies the maximum number of allowed boolean clauses in a query. The number m | 1024 |
| volume_size | number | The size of EBS volumes attached to data nodes (in GB). | 20 |
| volume_iops | number | Baseline input/output (I/O) performance of EBS volumes attached to data nodes. | 3000 |
| volume_throughput | number | Specifies the throughput (in MiB/s) of the EBS volumes attached to data nodes. A | 125 |
| fielddata_cache_size | number | Specifies the percentage of heap space that is allocated to fielddata. The value | 20 |
| warm_instance_type | string | Instance type for the domain's warm nodes. Valid values are `ultrawarm1.medium.s | "ultrawarm1.medium.search" |
| access_policies | string | IAM policy document specifying the access policies for the domain. If not speci | "" |
| cold_enabled | bool | Enable cold storage for the domain to store infrequently accessed or historical | false |
| instance_count | number | Number of instances in the cluster. | 1 |
| engine_version | string | Either Elasticsearch_X.Y or OpenSearch_X.Y to specify the engine version for the | "OpenSearch_1.3" |
| kms_key_arn | string | The KMS key ARN to encrypt the Amazon OpenSearch Service domain with. If not spe | "" |
| warm_count | number | Number of warm nodes in the cluster. Valid values are between 2 and 150. | 3 |
kibana_endpoint — Domain-specific endpoint for kibana without https scheme.arn — The ARN of the Amazon OpenSearch Service domain.id — The id of the Amazon OpenSearch Service domain.name — The name of the Amazon OpenSearch Service domain.endpoint — Domain-specific endpoint used to submit index, search, and data upload requests.Azure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,