-
Notifications
You must be signed in to change notification settings - Fork 9
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
EDSF-290 Create full DSF installation example
- Loading branch information
1 parent
0d7351d
commit 1cee48d
Showing
28 changed files
with
819 additions
and
483 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
31 changes: 0 additions & 31 deletions
31
examples/installation/dsf_single_account_deployment/agent_sources.tf
This file was deleted.
Oops, something went wrong.
61 changes: 0 additions & 61 deletions
61
examples/installation/dsf_single_account_deployment/agentless_sources.tf
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
139 changes: 121 additions & 18 deletions
139
examples/installation/dsf_single_account_deployment/main.tf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,33 +1,136 @@ | ||
provider "aws" { | ||
} | ||
|
||
provider "aws" { | ||
region = "us-east-1" | ||
alias = "poc_scripts_s3_region" | ||
} | ||
|
||
module "globals" { | ||
source = "imperva/dsf-globals/aws" | ||
version = "1.5.0" # latest release tag | ||
|
||
sonar_version = var.sonar_version | ||
dra_version = var.dra_version | ||
dra_version = var.dra_version | ||
tags = local.tags | ||
} | ||
|
||
module "key_pair" { | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
|
||
key_name_prefix = "imperva-dsf-" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-${terraform.workspace}" | ||
tags = local.tags | ||
} | ||
|
||
locals { | ||
workstation_cidr_24 = [format("%s.0/24", regex("\\d*\\.\\d*\\.\\d*", module.globals.my_ip))] | ||
deployment_name_salted = join("-", [var.deployment_name, module.globals.salt]) | ||
password = var.password != null ? var.password : module.globals.random_password | ||
workstation_cidr = var.workstation_cidr != null ? var.workstation_cidr : local.workstation_cidr_24 | ||
tags = merge(module.globals.tags, { "deployment_name" = local.deployment_name_salted }) | ||
additional_tags = var.additional_tags != null ? { for item in var.additional_tags : split("=", item)[0] => split("=", item)[1] } : {} | ||
tags = merge(module.globals.tags, { "deployment_name" = local.deployment_name_salted }, local.additional_tags) | ||
|
||
hub_primary_private_key_file_path = var.hub_primary_key_pair != null ? var.hub_primary_key_pair.private_key_file_path : module.key_pair_hub_primary[0].private_key_file_path | ||
hub_primary_public_key_name = var.hub_primary_key_pair != null ? var.hub_primary_key_pair.public_key_name : module.key_pair_hub_primary[0].key_pair.key_pair_name | ||
hub_secondary_private_key_file_path = var.hub_secondary_key_pair != null ? var.hub_secondary_key_pair.private_key_file_path : module.key_pair_hub_secondary[0].private_key_file_path | ||
hub_secondary_public_key_name = var.hub_secondary_key_pair != null ? var.hub_secondary_key_pair.public_key_name : module.key_pair_hub_secondary[0].key_pair.key_pair_name | ||
agentless_gw_primary_private_key_file_path = var.agentless_gw_primary_key_pair != null ? var.agentless_gw_primary_key_pair.private_key_file_path : module.key_pair_agentless_gw_primary[0].private_key_file_path | ||
agentless_gw_primary_public_key_name = var.agentless_gw_primary_key_pair != null ? var.agentless_gw_primary_key_pair.public_key_name : module.key_pair_agentless_gw_primary[0].key_pair.key_pair_name | ||
agentless_gw_secondary_private_key_file_path = var.agentless_gw_secondary_key_pair != null ? var.agentless_gw_secondary_key_pair.private_key_file_path : module.key_pair_agentless_gw_secondary[0].private_key_file_path | ||
agentless_gw_secondary_public_key_name = var.agentless_gw_secondary_key_pair != null ? var.agentless_gw_secondary_key_pair.public_key_name : module.key_pair_agentless_gw_secondary[0].key_pair.key_pair_name | ||
mx_private_key_file_path = var.mx_key_pair != null ? var.mx_key_pair.private_key_file_path : module.key_pair_mx[0].private_key_file_path | ||
mx_public_key_name = var.mx_key_pair != null ? var.mx_key_pair.public_key_name : module.key_pair_mx[0].key_pair.key_pair_name | ||
agent_gw_private_key_file_path = var.agent_gw_key_pair != null ? var.agent_gw_key_pair.private_key_file_path : module.key_pair_agent_gw[0].private_key_file_path | ||
agent_gw_public_key_name = var.agent_gw_key_pair != null ? var.agent_gw_key_pair.public_key_name : module.key_pair_agent_gw[0].key_pair.key_pair_name | ||
dra_admin_private_key_file_path = var.dra_admin_key_pair != null ? var.dra_admin_key_pair.private_key_file_path : module.key_pair_dra_admin[0].private_key_file_path | ||
dra_admin_public_key_name = var.dra_admin_key_pair != null ? var.dra_admin_key_pair.public_key_name : module.key_pair_dra_admin[0].key_pair.key_pair_name | ||
dra_analytics_private_key_file_path = var.dra_analytics_key_pair != null ? var.dra_analytics_key_pair.private_key_file_path : module.key_pair_dra_analytics[0].private_key_file_path | ||
dra_analytics_public_key_name = var.dra_analytics_key_pair != null ? var.dra_analytics_key_pair.public_key_name : module.key_pair_dra_analytics[0].key_pair.key_pair_name | ||
}} | ||
|
||
############################## | ||
# Generating ssh keys | ||
############################## | ||
|
||
module "key_pair_hub_primary" { | ||
count = var.hub_primary_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-hub-primary" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-hub-primary-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-1 | ||
} | ||
} | ||
|
||
module "key_pair_hub_secondary" { | ||
count = var.hub_secondary_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-hub-secondary" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-hub-secondary-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-1 | ||
} | ||
} | ||
|
||
module "key_pair_agentless_gw_primary" { | ||
count = var.agentless_gw_primary_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-gw-primary" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-agentless-gw-primary-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-2 | ||
} | ||
} | ||
|
||
module "key_pair_agentless_gw_secondary" { | ||
count = var.agentless_gw_secondary_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-gw-secondary" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-agentless-gw-secondary-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-2 | ||
} | ||
} | ||
|
||
module "key_pair_mx" { | ||
count = var.mx_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-mx" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-mx-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-1 | ||
} | ||
} | ||
|
||
module "key_pair_agent_gw" { | ||
count = var.agent_gw_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-agent-gw" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-agent-gw-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-2 | ||
} | ||
} | ||
|
||
module "key_pair_dra_admin" { | ||
count = var.dra_admin_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-dra-admin" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-dra-admin-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-1 | ||
} | ||
} | ||
|
||
module "key_pair_dra_analytics" { | ||
count = var.dra_analytics_key_pair == null ? 1 : 0 | ||
source = "imperva/dsf-globals/aws//modules/key_pair" | ||
version = "1.5.0" # latest release tag | ||
key_name_prefix = "imperva-dsf-dra-analytics" | ||
private_key_filename = "ssh_keys/dsf_ssh_key-dra-analytics-${terraform.workspace}" | ||
tags = local.tags | ||
providers = { | ||
aws = aws.provider-2 | ||
} | ||
} | ||
|
Oops, something went wrong.