Modernisation Platform Terraform Member VPC Module

This module creates the member accounts VPC and networking.

Looking for issues?

If you're looking to raise an issue with this module, please create a new issue in the Modernisation Platform repository.

Requirements

Name	Version
terraform	>= 1.0.1
aws	~> 5.0
random	~> 3.4

Providers

Name	Version
aws	~> 5.0
random	~> 3.4

Modules

No modules.

Resources

Name	Type
aws_cloudwatch_log_group.default	resource
aws_cloudwatch_log_group.xsiam_delivery_group	resource
aws_cloudwatch_log_stream.xsiam_delivery_stream	resource
aws_cloudwatch_log_subscription_filter.nacs_server_xsiam_subscription	resource
aws_default_security_group.default	resource
aws_flow_log.cloudwatch	resource
aws_iam_policy.put_record_policy	resource
aws_iam_policy.s3_kinesis_xsiam_policy	resource
aws_iam_policy.xsiam_kinesis_firehose_error_log_policy	resource
aws_iam_role.put_record_role	resource
aws_iam_role.xsiam_kinesis_firehose_role	resource
aws_iam_role_policy.xsiam_kinesis_firehose_role_policy	resource
aws_iam_role_policy_attachment.kinesis_firehose_error_log_role_attachment	resource
aws_iam_role_policy_attachment.kinesis_role_attachment	resource
aws_iam_role_policy_attachment.put_record_policy_attachment	resource
aws_internet_gateway.default	resource
aws_kinesis_firehose_delivery_stream.firehose_stream	resource
aws_route.public_internet_gateway	resource
aws_route.transit_gateway	resource
aws_route_table.protected	resource
aws_route_table.route_tables	resource
aws_route_table_association.protected	resource
aws_route_table_association.route_table_associations	resource
aws_s3_bucket.xsiam_firehose_bucket	resource
aws_s3_bucket_lifecycle_configuration.xsiam_firehose_bucket_config	resource
aws_s3_bucket_public_access_block.xsiam_firehose_bucket_block_public	resource
aws_s3_bucket_server_side_encryption_configuration.xsiam_firehose_bucket_encryption	resource
aws_s3_bucket_versioning.xsiam_firehose_bucket_versioning	resource
aws_security_group.endpoints	resource
aws_security_group_rule.endpoints_ingress_1	resource
aws_security_group_rule.endpoints_ingress_2	resource
aws_security_group_rule.endpoints_ingress_3	resource
aws_security_group_rule.endpoints_ingress_4	resource
aws_subnet.protected	resource
aws_subnet.subnets	resource
aws_vpc.vpc	resource
aws_vpc_endpoint.ssm_interfaces	resource
aws_vpc_endpoint.ssm_s3	resource
aws_vpc_ipv4_cidr_block_association.subnet_sets	resource
random_id.flow_logs	resource
aws_availability_zones.available	data source

Inputs

Name	Description	Type	Default	Required
additional_endpoints	additional endpoints required for VPC	list(any)	n/a	yes
build_firehose	Whether we want to build the firehose resources in the environment or not	bool	n/a	yes
kinesis_endpoint_secret_string	The secret that contains the endpoint key	string	n/a	yes
kinesis_endpoint_url	The aws kinesis http endpoint that the log data will be sent to	string	n/a	yes
subnet_sets	n/a	map(any)	n/a	yes
tags_common	MOJ required tags	map(string)	n/a	yes
tags_prefix	prefix for name tags	string	n/a	yes
transit_gateway_id	tgw ID	string	n/a	yes
vpc_flow_log_iam_role	VPC Flow Log IAM role ARN for VPC Flow Logs to CloudWatch	string	n/a	yes

Outputs

Name	Description
data_subnet_ids	n/a
expanded_worker_subnets_assocation	n/a
expanded_worker_subnets_with_keys	n/a
non_tgw_subnet_arns	Non-Transit Gateway and Protected subnet ARNs
non_tgw_subnet_arns_by_set	n/a
non_tgw_subnet_arns_by_subnetset	n/a
private_route_tables	n/a
private_subnet_ids	n/a
protected_subnet_ids	n/a
public_subnet_ids	n/a
tgw_subnet_ids	Transit Gateway subnet IDs
vpc_id	VPC ID