This terraform module will create an EFS filesystem bound to the VPC's private subnets.
It will next createa a filesystem access point using the EFS CSI driver and a StorageClass
in the cluster that can be used to mount the fs on multiple pods as ReadWriteMany
.
Access security is handled via IAM, calling https://github.com/ministryofjustice/cloud-platform-terraform-irsa to create the required ServiceAccount
.
See the examples/ folder.
Name | Version |
---|---|
terraform | >= 0.14 |
Name | Version |
---|---|
aws | n/a |
No modules.
Name | Type |
---|---|
aws_caller_identity.current | data source |
aws_region.current | data source |
No inputs.
No outputs.
Some of the inputs are tags. All infrastructure resources need to be tagged according to the MOJ techincal guidance. The tags are stored as variables that you will need to fill out as part of your module.
Name | Description | Type | Default | Required |
---|---|---|---|---|
application | string | - | yes | |
business-unit | Area of the MOJ responsible for the service | string | mojdigital |
yes |
environment-name | string | - | yes | |
infrastructure-support | The team responsible for managing the infrastructure. Should be of the form team-email | string | - | yes |
is-production | string | false |
yes | |
team_name | string | - | yes | |
sqs_name | string | - | yes |
EFS CSI upstream: https://github.com/kubernetes-sigs/aws-efs-csi-driver EKS persistent storage HOWTO: https://aws.amazon.com/premiumsupport/knowledge-center/eks-persistent-storage/