Merge pull request #7 from FIAP-3SOAT-G15/change-instance-class

Update IaC
FIAP-3SOAT-G15 · Mar 16, 2024 · 3efc70b · 3efc70b
2 parents 66de750 + af27ebf
commit 3efc70b
Show file tree

Hide file tree

Showing 4 changed files with 68 additions and 22 deletions.
diff --git a/.github/workflows/rds.yml → .github/workflows/provisioning.yml b/.github/workflows/rds.yml → .github/workflows/provisioning.yml
@@ -1,21 +1,21 @@
-name: "RDS"
+name: "Provisioning"
 
 on:
   push:
     branches:
       - main
     paths:
-      - .github/workflows/rds.yml
+      - .github/workflows/provisioning.yml
       - 'terraform/**'
   pull_request:
     branches:
       - main
     paths:
-      - .github/workflows/rds.yml
+      - .github/workflows/provisioning.yml
       - 'terraform/**'
 
 jobs:
-  rds:
+  provisioning:
     runs-on: ubuntu-latest
     defaults:
       run:
@@ -62,5 +62,5 @@ jobs:
         run: exit 1
 
       - name: Terraform Apply
-        if: github.ref == 'refs/heads/main' && github.event_name == 'push'
+        #if: github.ref == 'refs/heads/main' && github.event_name == 'push'
         run: terraform apply -auto-approve -input=false
diff --git a/terraform/main.tf b/terraform/main.tf
@@ -0,0 +1,62 @@
+locals {
+  name = "selfordermanagementdb"
+}
+
+data "terraform_remote_state" "tech-challenge" {
+  backend = "s3"
+
+  config = {
+    bucket = "fiap-3soat-g15-infra-tech-challenge-state"
+    key    = "live/terraform.tfstate"
+    region = var.region
+  }
+}
+
+module "db" {
+  source  = "terraform-aws-modules/rds/aws"
+  version = "6.5.2"
+
+  identifier = local.name
+
+  engine               = "postgres"
+  engine_version       = "15"
+  family               = "postgres15"
+  major_engine_version = "15"
+  instance_class       = "db.t3.micro"
+
+  allocated_storage     = 10
+  max_allocated_storage = 20
+
+  storage_encrypted = false
+
+  db_name  = local.name
+  username = "master"
+  port     = 5432
+
+  manage_master_user_password = true
+
+  multi_az               = false
+  db_subnet_group_name   = data.terraform_remote_state.tech-challenge.outputs.database_subnet_group_name
+  vpc_security_group_ids = [module.security_group.security_group_id]
+
+  backup_retention_period = 0
+  skip_final_snapshot     = true
+  deletion_protection     = false
+}
+
+module "security_group" {
+  source  = "terraform-aws-modules/security-group/aws"
+  version = "~> 5.0"
+
+  name   = local.name
+  vpc_id = data.terraform_remote_state.tech-challenge.outputs.vpc_id
+
+  ingress_with_cidr_blocks = [
+    {
+      from_port   = 5432
+      to_port     = 5432
+      protocol    = "tcp"
+      cidr_blocks = data.terraform_remote_state.tech-challenge.outputs.vpc_cidr_block
+    },
+  ]
+}
diff --git a/terraform/providers.tf b/terraform/providers.tf
@@ -2,7 +2,7 @@ terraform {
   required_providers {
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0.0"
+      version = ">= 5.36"
     }
   }
 

diff --git a/terraform/rds.tf b/terraform/rds.tf