mozilla
/
partinfra-terraform
зеркало из https://github.com/mozilla/partinfra-terraform.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
partinfra-terraform/db.tf

127 строки
4.4 KiB
HCL
Исходник Ответственный История

variable "mysql-shared-db_password" {}
variable "postgres-shared-db_password" {}
resource "aws_db_subnet_group" "apps-shared-rds-subnetgroup" {
name = "apps-shared-rds-subnetgroup"
description = "RDS subnet group for shared VPC"
subnet_ids = ["${aws_subnet.apps-shared-1a.id}", "${aws_subnet.apps-shared-1c.id}", "${aws_subnet.apps-shared-1d.id}"]
tags {
Name = "apps-shared-rds-subnetgroup"
}
}
resource "aws_security_group" "shared-rds-sg" {
name = "shared-rds-sg"
description = "Shared RDS SG"
vpc_id = "${aws_vpc.apps-shared-vpc.id}"
}
resource "aws_security_group_rule" "shared-rds-sg-allowmysqlfromprod" {
type = "ingress"
from_port = 3306
to_port = 3306
protocol = "tcp"
source_security_group_id = "${module.mesos-cluster-production.mesos-cluster-slave-sg-id}"
security_group_id = "${aws_security_group.shared-rds-sg.id}"
}
resource "aws_security_group_rule" "shared-rds-sg-allowmysqlfromstaging" {
type = "ingress"
from_port = 3306
to_port = 3306
protocol = "tcp"
source_security_group_id = "${module.mesos-cluster-staging.mesos-cluster-slave-sg-id}"
security_group_id = "${aws_security_group.shared-rds-sg.id}"
}
resource "aws_security_group_rule" "shared-rds-sg-allowpostgresfromprod" {
type = "ingress"
from_port = 5432
to_port = 5432
protocol = "tcp"
source_security_group_id = "${module.mesos-cluster-production.mesos-cluster-slave-sg-id}"
security_group_id = "${aws_security_group.shared-rds-sg.id}"
}
resource "aws_security_group_rule" "shared-rds-sg-allowpostgresfromstaging" {
type = "ingress"
from_port = 5432
to_port = 5432
protocol = "tcp"
source_security_group_id = "${module.mesos-cluster-staging.mesos-cluster-slave-sg-id}"
security_group_id = "${aws_security_group.shared-rds-sg.id}"
}
resource "aws_db_instance" "mysql-shared-db" {
allocated_storage = 40
engine = "mysql"
engine_version = "5.6.27"
instance_class = "db.t2.medium"
publicly_accessible = false
backup_retention_period = 7
apply_immediately = true
multi_az = true
storage_type = "gp2"
final_snapshot_identifier = "mysql-shared-db-final"
name = "mysqlshareddb"
username = "root"
password = "${var.mysql-shared-db_password}"
vpc_security_group_ids = ["${aws_security_group.shared-rds-sg.id}"]
db_subnet_group_name = "${aws_db_subnet_group.apps-shared-rds-subnetgroup.name}"
parameter_group_name = "default.mysql5.6"
tags {
Name = "mysql-shared-db"
app = "mysql"
env = "shared"
project = "partinfra"
}
}
resource "aws_route53_record" "mysql-shared-dns" {
zone_id = "${var.paas-mozilla-community-zone-id}"
name = "mysql-shared-db"
type = "CNAME"
ttl = 300
records = ["${aws_db_instance.mysql-shared-db.address}"]
}
resource "aws_db_instance" "postgres-shared-db" {
identifier = "postgres-shared-db"
allocated_storage = 50
engine = "postgres"
engine_version = "9.5.4"
instance_class = "db.m4.xlarge"
publicly_accessible = false
backup_retention_period = 7
apply_immediately = true
multi_az = true
storage_type = "gp2"
final_snapshot_identifier = "postgres-shared-db-final"
name = "postgresshareddb"
username = "root"
password = "${var.postgres-shared-db_password}"
vpc_security_group_ids = ["${aws_security_group.shared-rds-sg.id}"]
db_subnet_group_name = "${aws_db_subnet_group.apps-shared-rds-subnetgroup.name}"
parameter_group_name = "default.postgres9.5"
copy_tags_to_snapshot = true
tags {
Name = "postgres-shared-db"
app = "postgres"
env = "shared"
project = "partinfra"
}
}
resource "aws_route53_record" "postgres-shared-dns" {
zone_id = "${var.paas-mozilla-community-zone-id}"
name = "postgres-shared-db"
type = "CNAME"
ttl = 300
records = ["${aws_db_instance.postgres-shared-db.address}"]
}
Ссылка в новой задаче Показать git blame Копировать постоянную ссылку