xpk/terraform.aws-baseline-infra
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
227 Commits 1 Branch 2 Tags 3 MiB
8746f3cb80
Commit Graph

195 Commits

Author SHA1 Message Date
xpk
c53a27ee5f
FIX: correcting hard-coded test secret name 2023-06-13 15:47:05 +08:00
xpk
abf60a0972
UPD: removed jsoncodeing of secret-string and use the raw value 2023-06-13 15:38:56 +08:00
xpk
1d112a6136
UPD: added README and removed unnecessary config in provider.tf 2023-06-13 15:37:53 +08:00
xpk
1c9975d749
NEW: simple secretsmanager module 2023-06-13 15:32:02 +08:00
xpk
6fff23958b
UPD: updated ec2 module to support multiple data volumes, up to 26 of them 2023-05-29 23:20:21 +08:00
xpk
70d4d78533
NEW: s3 bucket module 2023-05-25 08:28:19 +08:00
xpk
6584960d1a
UPD: backported monitoring modules from customer repo 2023-05-23 13:10:16 +08:00
xpk
9ecb677dde
UPD: added AllowSSLRequestsOnly bucket policy statement 2023-03-25 12:36:54 +08:00
xpk
734b81fc2b
NEW: EKS sample code 2023-02-21 12:26:31 +08:00
xpk
c92c22f4bd
UPD: saved cis1.4 to local, elimited the need to wget it. modified cli command to enable global events only in primary region 2023-01-18 13:55:25 +08:00
xpk
48191b808f
UPD: various bug fixes and enhancements 2023-01-05 23:35:31 +08:00
xpk
bcdbb23221
NEW: EKS monitoring 2022-12-30 00:01:39 +08:00
xpk
9a3ec387a9
UPD: added monitoring for MSK/Redis 2022-12-19 16:13:45 +08:00
xpk
7023e71fb5
UPD: added more OpenSearch alarms 2022-12-19 14:45:23 +08:00
xpk
bfbca075aa
UPD: flatten output for better visibility 2022-12-12 19:09:17 +08:00
xpk
aaad6ac8cc
UPD: removed enable_sso and alias to prevent conflicts 2022-12-12 18:51:43 +08:00
xpk
15942ee76c
UPD: took back the last change, subnet cidrs are now calculated by this module. See README.md for more details 2022-12-12 12:56:33 +08:00
xpk
154ee2a0eb
UPD: VPC module now requires cidr ranges to be supplied in root module. Created adconnector module 2022-12-12 11:18:38 +08:00
xpk
a79fe1f365
NEW: new SSO modules 2022-12-08 14:34:42 +08:00
xpk
4d61d0943e
NEW: TGW and NGW monitoring 2022-12-08 10:42:05 +08:00
xpk
a9e77c22da
UPD: disabled tag update 2022-12-06 14:35:13 +08:00
xpk
d9cad6b7a3
NEW: monitor health events with eventbridge 
Signed-off-by: xpk <xpk@headdesk.me>
 2022-12-02 10:59:40 +08:00
xpk
e627637d21
UPD: renamed sso module and added outputs 2022-11-24 13:55:24 +08:00
xpk
8a16ee5dc1
NEW: AWS SSO module 2022-11-24 09:52:27 +08:00
xpk
597aa0736f
UPD: removed checks specified by customer, add checks from default CW agent config 2022-11-21 14:55:32 +08:00
xpk
a2800fafd3
UPD: added swap_used_percent and mem_used_percent metrics for linux 2022-11-16 23:21:48 +08:00
xpk
d30103f29e
UPD: refactored cw dimension detection 2022-11-14 09:41:12 +08:00
xpk
14ef1770c2
DOC: updated readme with examples 2022-11-10 17:10:45 +08:00
xpk
d5f2af07c5
NEW: external data source for identifying EC2 OS platform 2022-11-10 14:04:44 +08:00
xpk
a348848966
UPD: get sns targets from root module variable 2022-11-10 11:16:24 +08:00
xpk
bc995f7ac8
UPD: updated README 2022-11-03 21:16:35 +08:00
KF
ee09ad461c
UPD: clean up code comments 2022-11-03 21:11:15 +08:00
KF
a0cf9362d4
NEW: cwagent external datasource and ec2 monitoring 2022-11-03 11:39:31 +08:00
KF
282df3c08b
UPD: added EC2 monitoring with cwagent 2022-11-02 18:05:26 +08:00
KF
b3ba6f2441
UPD: Added more monitoring modules and various enhancements 2022-10-26 11:13:56 +08:00
KF
2af0ff1b1a
UPD: created util/resource-list module and moved shell scripts there 2022-10-25 19:51:04 +08:00
KF
f9b80bd6d2
UPD: added read write latency checks for RDS 2022-10-25 15:57:57 +08:00
KF
4438ecbcd5
NEW: cloudwatch modules for various resource monitoring 2022-10-25 14:21:37 +08:00
KF
797caaaa49
UPD: merged iam-user-pgp into iam-user module 2022-10-20 09:12:29 +08:00
KF
f11b4fbc44
UPD: decoupled iam group from iam user module. create new iam-group module 2022-10-19 22:09:15 +08:00
KF
c866a877b6
UPD: changed to for_each 2022-10-19 20:01:04 +08:00
KF
9002bbed80
FIX: bug fix on iam-user module 2022-10-19 19:56:39 +08:00
KF
bcf760b5b0
UPD: moved selfservice policy to module 2022-10-19 19:11:13 +08:00
KF
3ff617b388
NEW: Process credentials with gpg 2022-10-17 13:19:53 +08:00
KF
4fa00e5647
UPD: including list id in description 2022-10-06 15:27:44 +08:00
KF
efa01270a0
UPD: added headdesk code and security group module 2022-10-06 15:20:42 +08:00
KF
9c0af27bdb
UPD: deploy vpc endpoints by default 2022-09-22 00:46:56 +08:00
KF
0b697c6af8
NEW: vpc-ep module 2022-09-22 00:43:34 +08:00
KF
2354b84f84
UPD: adding iam-user-policy-name variable 2022-09-19 16:04:26 +08:00
xpk
9cc5df4dda
UPD: added iam group support 2022-09-16 10:37:28 +08:00
xpk
06233f9ae0
NEW: iam user module 2022-09-15 16:31:30 +08:00
xpk
a4bdee471e
UPD: replaced region shortname with just the region prefix 2022-09-08 16:22:06 +08:00
xpk
346acca7fd
NEW: aws backup 2022-09-06 11:41:06 +08:00
xpk
1ed9590757
NEW: ec2 module 2022-09-05 18:32:37 +08:00
xpk
864692998e
UPD: added other account default settings 2022-09-05 13:58:22 +08:00
xpk
d47e06df0c
UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00
xpk
aaf99335bd
UPD: added examples directory and updated several modules 2022-09-05 13:51:51 +08:00
xpk
0bd23ee8ba
UPD: region short now replaced with just the first 2 letters of region name 2022-09-05 11:44:39 +08:00
xpk
007bfc1a95
DOC: updated readme 2022-09-05 11:31:08 +08:00
xpk
4ab769f1fd
UPD: remove deprecated code in infra-bucket, revamped Config module 2022-09-05 11:07:42 +08:00
xpk
288b79484c
UPD: updated destroy command 2022-08-29 11:10:00 +08:00
xpk
5732f4bf75
NEW: inspector2 2022-08-29 10:58:50 +08:00
xpk
e291845a78
UPD: added comments 2022-08-18 08:27:31 +08:00
xpk
af5909e39b
UPD: removing unnecessary input variables 2022-08-18 08:23:50 +08:00
xpk
d359982fb5
NEW: aws-region-short module 2022-08-17 17:11:52 +08:00
xpk
914c6661fe
UPD: minor updates 2022-08-17 16:55:28 +08:00
xpk
e272c6471a
UPD: canned s3 bucket policy 2022-08-17 16:01:26 +08:00
xpk
89a45a747e
NEW: account-list module 2022-08-17 15:20:12 +08:00
xpk
d7d12301d8
NEW: module for creating state bucket and lock 2022-08-17 11:50:26 +08:00
xpk
a5414b764d
DOC: updated readme 2022-08-15 14:50:56 +08:00
xpk
3a194b65e5
DOC: updated readme 2022-08-15 14:43:13 +08:00
xpk
ecb3b246cd
DEL: removed rs stuff 2022-08-05 16:46:16 +08:00
xpk
be755a4b8d
FIX: bug fix 2022-08-05 16:03:12 +08:00
xpk
d64630e924
UPD: simplified script 2022-08-05 15:40:04 +08:00
xpk
6044f17540
FIX: correct shell script error 2022-08-05 15:08:37 +08:00
xpk
3c5c56737f
NEW: delete-default-vpcs module 2022-08-05 14:56:21 +08:00
xpk
a0de86d92e
NEW: rackspace role 2021-02-23 16:10:28 +08:00
xpk
a804af15db
NEW: guardduty and kms key rotation 2021-01-31 22:18:26 +08:00
xpk
30b6131af9
NEW: added config rules for CIS 2021-01-29 17:35:45 +08:00
xpk
ca4bd3b126
NEW: awsconfig and s3 module 2021-01-29 16:21:17 +08:00
xpk
187760ec15
UPD: added CIS 3.x CWL alarms 2021-01-29 14:39:58 +08:00
xpk
d98ecfc1ec
UPD: hardened default vpc security group 2021-01-29 11:45:09 +08:00
xpk
93e9670539
UPD: modified vpc 2021-01-29 11:22:47 +08:00
xpk
660572afdc
UPD: updated readme 2021-01-28 16:52:18 +08:00
xpk
c58be7d974
DOC: added readme 2021-01-28 16:36:32 +08:00
xpk
69fe037ec9
NEW: added vpc and subnet code 2021-01-28 15:04:01 +08:00
xpk
1a3246f176
UPD: adjusted bucket permissions 2021-01-28 09:25:50 +08:00
xpk
3ddc62ab64
UPD: minor touchup 2021-01-27 16:36:28 +08:00
xpk
4865fdcba7
UPD: adding securityaudit role 2021-01-27 16:26:43 +08:00
xpk
213fc9a9fe
NEW: added cloudhealth role 2021-01-27 11:52:54 +08:00
xpk
9fafa93c9d
NEW: added cloudhealth role 2021-01-27 11:47:20 +08:00
xpk
1c68b5b851
NEW: added readme 2021-01-27 11:36:52 +08:00
xpk
f28e631344
UPD: added more resources to roles_iam_resources module 2021-01-27 11:33:48 +08:00
xpk
51458c3d58
NEW: iam roles 2021-01-27 09:42:51 +08:00
xpk
d8b9390928
NEW: cloudtrail and cwl 2021-01-26 21:40:02 +08:00