Skip to content

upmaru/terraform-aws-instellar

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

302 Commits
examples/full-stack
examples/full-stack
 
 
modules
modules
 
 
templates
templates
 
 
.gitignore
.gitignore
 
 
.terraform-docs.yml
.terraform-docs.yml
 
 
.terraform.lock.hcl
.terraform.lock.hcl
 
 
.tool-versions
.tool-versions
 
 
README.md
README.md
 
 
bastion.tf
bastion.tf
 
 
keys.tf
keys.tf
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
roles.tf
roles.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

Repository files navigation

Terraform AWS Module for Instellar

This module automatically forms LXD cluster on amazon AWS. This terraform module will do the following:

  • Setup networking
  • Setup multi az public subnet
  • Setup bastion node
  • Setup compute instances
  • Setup Private Key access
  • Automatically form a cluster
  • Destroy a cluster
  • Enable removal of specific nodes gracefully
  • Protect against database-leader deletion

These functionality come together to enable the user to fully manage LXD cluster using IaC (infrastructure as code)

Requirements

Name Version
terraform >= 1.0.0
aws ~> 5.0
tls 4.0.4

Providers

Name Version
aws 5.43.0
cloudinit 2.3.3
ssh 2.7.0
terraform n/a
tls 4.0.4

Modules

Name Source Version
balancer upmaru/instellar/aws//modules/balancer ~> 0.9
global_accelerator upmaru/instellar/aws//modules/global-accelerator ~> 0.9

Resources

Name Type
aws_iam_instance_profile.bastion resource
aws_iam_instance_profile.nodes resource
aws_iam_role.bastion resource
aws_iam_role.nodes resource
aws_iam_role_policy_attachment.bastion_core resource
aws_iam_role_policy_attachment.bastion_patch resource
aws_iam_role_policy_attachment.nodes_core resource
aws_iam_role_policy_attachment.nodes_patch resource
aws_instance.bastion resource
aws_instance.bootstrap_node resource
aws_instance.nodes resource
aws_key_pair.bastion resource
aws_key_pair.terraform_cloud resource
aws_placement_group.nodes resource
aws_security_group.bastion_firewall resource
aws_security_group.nodes_firewall resource
aws_vpc_security_group_egress_rule.allow_bastion_outgoing_v4 resource
aws_vpc_security_group_egress_rule.allow_bastion_outgoing_v6 resource
aws_vpc_security_group_egress_rule.allow_nodes_outgoing_v4 resource
aws_vpc_security_group_egress_rule.allow_nodes_outgoing_v6 resource
aws_vpc_security_group_ingress_rule.allow_ssh resource
aws_vpc_security_group_ingress_rule.cross_nodes resource
aws_vpc_security_group_ingress_rule.nodes_from_bastion resource
aws_vpc_security_group_ingress_rule.nodes_public_http_v4 resource
aws_vpc_security_group_ingress_rule.nodes_public_http_v6 resource
aws_vpc_security_group_ingress_rule.nodes_public_https_v4 resource
aws_vpc_security_group_ingress_rule.nodes_public_https_v6 resource
aws_vpc_security_group_ingress_rule.nodes_public_lxd_v4 resource
aws_vpc_security_group_ingress_rule.nodes_public_lxd_v6 resource
aws_vpc_security_group_ingress_rule.nodes_public_uplink_v4 resource
aws_vpc_security_group_ingress_rule.nodes_public_uplink_v6 resource
ssh_resource.cluster_join_token resource
ssh_resource.node_detail resource
ssh_resource.trust_token resource
terraform_data.bastion_cloudinit resource
terraform_data.reboot resource
terraform_data.removal resource
tls_private_key.bastion_key resource
tls_private_key.terraform_cloud resource
aws_ami.ubuntu data source
aws_iam_policy_document.assume_role data source
aws_key_pair.terminal data source
cloudinit_config.bastion data source
cloudinit_config.node data source

Inputs

Name Description Type Default Required
ami_architecture The architecture of the AMI string "amd64" no
balancer Enable Load Balancer bool false no
balancer_deletion_protection Enable balancer deletion protection bool true no
balancer_ssh Enable SSH port on balancer bool true no
bastion_size Bastion instance type? string "t3a.micro" no
bastion_ssh Enable SSH port bool true no
blueprint Identifier of the blueprint string n/a yes
cluster_topology How many nodes do you want in your cluster? 
list(object({
    id   = number
    name = string
    size = optional(string, "t3.medium")
  }))
 [] no
global_accelerator Enable Global Accelerator bool false no
identifier Name of your cluster string n/a yes
network_dependencies value list [] no
node_detail_revision The revision of the node detail number 1 no
node_monitoring Enable / Disable detailed monitoring bool false no
node_size Which instance type? string "t3a.medium" no
protect_leader Protect the database leader node bool true no
public_subnet_ids Public subnet ids to pass in if block type is compute list(string) n/a yes
publicly_accessible Make the cluster publically accessible? If you use a load balancer this can be false. bool true no
region AWS region string n/a yes
ssh_keys List of ssh key names list(string) [] no
ssm Enable SSM bool false no
storage_size How much storage on your nodes? number 40 no
volume_type Type of EBS Volume to use string "gp3" no
vpc_id vpc id to pass in if block type is compute string n/a yes
vpc_ip_range VPC ip range string n/a yes

Outputs

Name Description
balancer Load balancer details
bastion_access Bastion access output for passing into other modules
bastion_security_group_id Bastion security group id
bootstrap_node Bootstrap node details
cluster_address Bootstrap node public ip
identifier Identifier of the cluster
nodes Compute nodes details
nodes_iam_role IAM Role for nodes and bootstrap node
nodes_security_group_id Nodes security group id
subnet_ids Subnet IDs
trust_token Trust token for the cluster
vpc_id VPC id

About

Terraform module for bootstrapping LXD cluster for using with https://opsmaru.com

registry.terraform.io/modules/upmaru/instellar/aws/latest

Topics

clustering lxd infrastructure-as-code terraform-module

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

48 tags

Packages

 
 
 

Languages