This module retrieves some basic ACS information and exposes them via outputs.
Note: This module does not create nor update any resources.
module "acs" {
source = "github.com/byu-oit/terraform-aws-acs-info.git?ref=v4.1.0"
}After defining the module you can then retrieve the information you need (see available outputs below) using the interpolation syntax:
...
vpc_id = module.acs.vpc.id
- Terraform version 1.0.0 or greater
- AWS Provider version 4.2 or greater
| Name | Type | Description | Default Value |
|---|---|---|---|
| vpc_vpn_to_campus | bool | Retrieve VPC info for the VPC that has VPN access to campus | false |
| Name | Type | Description |
|---|---|---|
| power_user_role | object | The IAM PowerUser Role object |
| power_builder_role | object | The IAM PowerBuilder Role object |
| power_builder_policies | object | The IAM PowerBuilder Policy objects |
| role_permissions_boundary | object | The IAM role permissions boundary policy object |
| user_permissions_boundary | object | The IAM user permissions boundary policy object |
| vpc | object | The VPC object |
| private_subnet_ids | list(string) | List of subnet_ids for the private subnets in the specified VPC |
| public_subnet_ids | list(string) | List of subnet_ids for the public subnets in the specified VPC |
| data_subnet_ids | list(string) | List of subnet_ids for the data subnets in the specified VPC |
| private_subnets | list(object) | List of private subnet objects in the specified VPC |
| public_subnets | list(object) | List of public subnet object in the specified VPC |
| data_subnets | list(object) | List of data subnet objects in the specified VPC |
| route53_zone | object | The Route53 zone object |
| certificate | object | The default zone's ACM certificate object) |
| certificate_virginia | object | The default zone's ACM certificate for us-east-1 (needed by CloudFront, API Gateway, etc.) object |
| db_subnet_group_name | string | Deprecated Use db_subnet_group.name |
| db_subnet_group | object | The database subnet group for RDS in the specified VPC object |
| elasticache_subnet_group_name | string | The name of the subnet group for Elasticache in the specified VPC. |
| ssh_rdp_security_group | object | The security group to enable SSH/RDP access to resources in the specified VPC object |
| oracle_security_group | object | The security group to enable Oracle access to resources in the specified VPC object |
| alation_security_group | object | The security group to allow access in from Alation |
| dremio_security_group | object | The security group to allow access in from Dremio |
| globalprotect_security_group | object | The security group to allow access in from the GlobalProtect VPN |
| informatica_security_group | object | The security group to allow access in from Informatica |
| tyk_security_group | object | The security group to allow access in from the Tyk Gateways |
| github_oidc_provider | object | The GitHub Actions OIDC provider. This should be used in the trust policy of an IAM Role that GHA will assume during CI/CD. |
| github_token | string | The token to use in CI/CD pipelines to fetch source code from GitHub (this is only available in certain AWS accounts) |
| humio_dev_token | string | The token to use to ship logs to dev instance of Humio (this is only available in certain AWS accounts) |
| humio_prd_token | string | The token to use to ship logs to prd instance of Humio (this is only available in certain AWS accounts) |
| humio_dev_endpoint | string | The endpoint to use to ship logs to dev instance of Humio (this is only available in certain AWS accounts) |
| humio_prd_endpoint | string | The endpoint to use to ship logs to prd instance of Humio (this is only available in certain AWS accounts) |
Note about returning objects: Because objects are returned (as opposed to just values), autocomplete may not work. Just add on the key to the end out the output accessor. Even though autocomplete won't work, those values will still be correctly returned.