Skip to content
Snippets Groups Projects
Normal view Permalink
ecs.tf 2.25 KiB
Newer Older
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
1 
data "template_file" "container" {
Nuwan Rajika Kumarasiri's avatar
Add an EFS volume into Secure Agent infrastructure  
Nuwan Rajika Kumarasiri committed
2 
  template = file("./templates/container-definitions.tpl")
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
3 
  vars     = {
Nuwan Rajika Kumarasiri's avatar
Add an EFS volume into Secure Agent infrastructure  
Nuwan Rajika Kumarasiri committed
4 5 6 7 8 9 10 11 12 13 14 15 
    container_name          = var.container_name
    image_name              = var.image_name
    app_port1               = var.container_app_port[0]
    app_port2               = var.container_app_port[1]
    app_port3               = var.container_app_port[2]
    informatica_username    = var.informatica_username
    informatica_password    = var.informatica_password
    volume1                 = var.secure_agnet_container_volumes[0]
    volume2                 = var.secure_agnet_container_volumes[1]
    volume3                 = var.secure_agnet_container_volumes[2]
    volume4                 = var.secure_agnet_container_volumes[3]
    secure_agent_efs_volume = var.secure_agent_efs_volume
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
16 17 18 19 20 21 22 23 
  }
}

data "aws_iam_role" "ecs-task-execution" {
  name = "ecsTaskExecutionRole"
}

resource "aws_ecs_task_definition" "task" {
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
24 25 26 27 
  family                   = var.ecs_task_name
  execution_role_arn       = data.aws_iam_role.ecs-task-execution.arn
  network_mode             = var.container_network_mode
  requires_compatibilities = [
Nuwan Rajika Kumarasiri's avatar
Add an EFS volume into Secure Agent infrastructure  
Nuwan Rajika Kumarasiri committed
28 
    "EC2"]
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
29 
  container_definitions    = data.template_file.container.rendered
Nuwan Rajika Kumarasiri's avatar
Add an EFS volume into Secure Agent infrastructure  
Nuwan Rajika Kumarasiri committed
30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 
  volume {
    name      = var.secure_agent_efs_volume
    host_path = ""
    docker_volume_configuration {
      autoprovision = true
      scope         = "shared"

      driver_opts = {
        "type"   = "nfs"
        "device" = "${aws_efs_file_system.secure-agent-fs.dns_name}:/"
        "o"      = "addr=${aws_efs_file_system.secure-agent-fs.dns_name},nfsvers=4.1,rsize=1048576,wsize=1048576,hard,timeo=600,retrans=2,nosuid"
      }
    }
  }
  tags                     = var.ecs_task_tags
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
45 46 47 
}

resource "aws_ecs_service" "service" {
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
48 49 
  name            = var.ecs_service_name
  cluster         = aws_ecs_cluster.cluster.id
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
50 
  task_definition = aws_ecs_task_definition.task.arn
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
51 
  desired_count   = 1
Nuwan Rajika Kumarasiri's avatar
Add an EFS volume into Secure Agent infrastructure  
Nuwan Rajika Kumarasiri committed
52 53 
  # secure agent configs and logs are persisted into an EFS volume.
  launch_type     = "EC2"
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
54 55 

  network_configuration {
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent  
Nuwan Rajika Kumarasiri committed
56 57 58 
    security_groups  = [
      data.aws_security_group.sec-group.id]
    subnets          = data.aws_subnet_ids.subnets.ids
Nuwan Rajika Kumarasiri's avatar
Add initial terraform scripts for automating infra. for Informatica Secure Agent
Nuwan Rajika Kumarasiri committed
59 60 61 62 63 64 65 66 
    assign_public_ip = false
  }
}

resource "aws_ecs_cluster" "cluster" {
  name = var.ecs_cluster_name
  tags = var.ecs_cluster_tags
}