Terraform modules for working with cloud.gov commonly used by 18f/rails-template based apps
Creates an RDS database based on the rds_plan_name variable and outputs the instance_id for use elsewhere.
module "database" {
source = "github.com/18f/terraform-cloudgov//database?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = local.cf_space_name
name = "database_name"
rds_plan_name = "micro-psql"
tags = ["tag1", "tag2"]
# See options at https://cloud.gov/docs/services/relational-database/#setting-optional-parameters-1
json_params = jsonencode(
{
"storage" : 10,
}
)
}
Creates a Elasticache redis instance and outputs the instance_id for use elsewhere.
module "redis" {
source = "github.com/18f/terraform-cloudgov//redis?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = local.cf_space_name
name = "redis_name"
redis_plan_name = "redis-dev"
tags = ["tag1", "tag2"]
# See options at https://cloud.gov/docs/services/aws-elasticache/#setting-optional-parameters
json_params = jsonencode(
{
"engineVersion" : "6.2",
}
)
}
Creates an s3 bucket and outputs the bucket_id for use elsewhere.
module "s3" {
source = "github.com/18f/terraform-cloudgov//s3?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = local.cf_space_name
name = "${local.app_name}-s3-${local.env}"
tags = ["tag1", "tag2"]
# See options at https://cloud.gov/docs/services/s3/#setting-optional-parameters
json_params = jsonencode(
{
"object_ownership" : "ObjectWriter",
}
)
}
Connects a custom domain name or domain name with CDN to an already running application and outputs the instance_id (for the domain service) and the route_id (for the origin route) for use elsewhere.
Note that the domain must be created in cloud.gov by an OrgManager before this module is included.
cf create-domain CLOUD_GOV_ORG my-production-domain-name
module "domain" {
source = "github.com/18f/terraform-cloudgov//domain?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = local.cf_space_name
app_name_or_id = "app_name"
cdn_plan_name = "domain"
domain_name = "my-production-domain-name"
host_name = "my-production-host-name"
tags = ["tag1", "tag2"]
}
Creates an application and associated network routing to run ClamAV via API to scan user uploads and outputs the app_id, the route_id, and the endpoint for use elsewhere.
Notes:
- The scanning app requires at least
3GBof memory, and yourapp_namemust be deployed before this module is included. - Module
>= v0.3.0requiresTAG_NAMEbeing>= 20230228.
module "clamav" {
source = "github.com/18f/terraform-cloudgov//clamav?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = local.cf_space_name
app_name_or_id = "app_name"
name = "my_clamav_name"
clamav_image = "ghcr.io/gsa-tts/clamav-rest/clamav:TAG_NAME"
max_file_size = "30M"
instances = 2
proxy_server = local.proxy_server # https proxy to reach database.clamav.net:443, if necessary
proxy_port = local.proxy_port
proxy_username = local.proxy_username
proxy_password = local.proxy_password
}
Creates a new cloud.gov space, such as when creating an egress space, and outputs the space_id for use elsewhere.
managers, developers, and deployers are all optional, but you probably want to set at least one of them, depending on your use case.
module "egress_space" {
source = "github.com/18f/terraform-cloudgov//cg_space?ref=v1.0.0"
cf_org_name = local.cf_org_name
cf_space_name = "${local.cf_space_name}-egress"
managers = [
"space.manager@gsa.gov"
]
developers = [
"space.developer@gsa.gov"
]
deployers = [
var.cf_user
]
}