-
Notifications
You must be signed in to change notification settings - Fork 0
/
main.tf
136 lines (129 loc) · 3.86 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
# -----------------------------------------------------------
# ssh key pair
# -----------------------------------------------------------
resource "aws_key_pair" "sshkey" {
key_name = "${var.project}-key"
public_key = file("./terrakey.pub")
tags = {
Name = "${var.project}-key"
project = var.project
}
}
# -----------------------------------------------------------
# Security Group For Webserver Access
# -----------------------------------------------------------
resource "aws_security_group" "webserver" {
name = "webserver"
description = "allows conntection to port 80 and 22 from all IPs"
ingress {
description = ""
from_port = 80
to_port = 80
protocol = "tcp"
cidr_blocks = [ "0.0.0.0/0" ]
ipv6_cidr_blocks = [ "::/0" ]
}
ingress {
description = ""
from_port = 22
to_port = 22
protocol = "tcp"
cidr_blocks = [ "0.0.0.0/0" ]
ipv6_cidr_blocks = [ "::/0" ]
}
egress {
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = [ "0.0.0.0/0" ]
ipv6_cidr_blocks = [ "::/0" ]
}
tags = {
Name = "${var.project}"
project = var.project
}
}
# -----------------------------------------------------------
# Classic Loadbalncer
# -----------------------------------------------------------
resource "aws_elb" "clb" {
name_prefix = "${substr(var.project, 0, 5)}-"
security_groups = [aws_security_group.webserver.id]
availability_zones = [ "ap-south-1a", "ap-south-1b" ]
listener {
instance_port = 80
instance_protocol = "http"
lb_port = 80
lb_protocol = "http"
}
health_check {
healthy_threshold = 2
unhealthy_threshold = 2
timeout = 2
target = "HTTP:80/health.html"
interval = 15
}
cross_zone_load_balancing = true
idle_timeout = 60
connection_draining = true
connection_draining_timeout = 5
tags = {
Name = var.project
project = var.project
}
}
# -----------------------------------------------------------
# Route53 record addition
# -----------------------------------------------------------
resource "aws_route53_record" "site" {
zone_id = data.aws_route53_zone.selected.zone_id
name = "shopping.${data.aws_route53_zone.selected.name}"
type = "CNAME"
ttl = "5"
records = [aws_elb.clb.dns_name]
}
# -----------------------------------------------------------
# Launch Configuration
# -----------------------------------------------------------
resource "aws_launch_configuration" "frontend" {
name_prefix = "${var.project}-"
key_name = aws_key_pair.sshkey.id
image_id = "${var.instance_ami}"
instance_type = "t2.micro"
user_data = file("setup.sh")
security_groups = [aws_security_group.webserver.id]
lifecycle {
create_before_destroy = true
}
}
# -----------------------------------------------------------
# AutoScaling Group
# -----------------------------------------------------------
resource "aws_autoscaling_group" "frontend" {
name = "${var.project}"
launch_configuration = aws_launch_configuration.frontend.name
min_size = 2
max_size = 2
desired_capacity = 2
health_check_grace_period = 120
availability_zones = [ "ap-south-1a", "ap-south-1b" ]
load_balancers = [ aws_elb.clb.id ]
wait_for_elb_capacity = 2
health_check_type = "ELB"
tag {
key = "Name"
value = var.project
propagate_at_launch = true
}
tag {
key = "project"
value = var.project
propagate_at_launch = true
}
lifecycle {
create_before_destroy = true
}
}
output "instance" {
value = "http://${aws_elb.clb.dns_name}"
}