Skip to content

Latest commit

 

History

History

shared-vpc-policy-and-hosted-zone

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

README.md

shared-vpc-policy-and-hosted-zone

Introduction

This sub-module enables the creation of all essential AWS resources within the shared VPC account to support the shared VPC infrastructure. It encompasses the provisioning of IAM resources to facilitate sharing between accounts, ensuring seamless collaboration and resource access. Additionally, the module handles the configuration of a Route 53 hosted zone, enabling external access into the VPC for enhanced connectivity and service accessibility.

Requirements

Name Version
terraform >= 1.0
aws >= 4.0
time >= 0.9

Providers

Name Version
aws >= 4.0
time >= 0.9

Modules

No modules.

Resources

Name Type
aws_iam_policy.shared_vpc_policy resource
aws_iam_role.shared_vpc_role resource
aws_iam_role_policy_attachment.shared_vpc_role_policy_attachment resource
aws_ram_principal_association.shared_vpc_resource_share resource
aws_ram_resource_association.shared_vpc_resource_association resource
aws_ram_resource_share.shared_vpc_resource_share resource
aws_route53_zone.shared_vpc_hosted_zone resource
time_sleep.shared_resources_propagation resource
aws_caller_identity.current data source
aws_partition.current data source
aws_region.current data source

Inputs

Name Description Type Default Required
cluster_name The cluster's name for which shared resources are created. It is used for the hosted zone domain. string n/a yes
hosted_zone_base_domain The base domain that must be used for hosted zone creation. string n/a yes
ingress_operator_role_arn Ingress Operator ARN from target account. string n/a yes
installer_role_arn Installer ARN from target account. string n/a yes
name_prefix The prefix applied to all AWS creations. string n/a yes
subnets The list of the subnets that must be shared between the accounts. list(string) n/a yes
target_aws_account The AWS account number where the cluster is created. string n/a yes
vpc_id The Shared VPC ID. string n/a yes

Outputs

Name Description
hosted_zone_id Hosted Zone ID
shared_role Shared VPC Role ARN
shared_subnets The Amazon Resource Names (ARN) of the resource share