thismvaye

SCT-Engineering · Jul 18, 2024 · dd83b5d · dd83b5d
1 parent 6bc2510
commit dd83b5d
Show file tree

Hide file tree

Showing 3 changed files with 79 additions and 2 deletions.
diff --git a/lab/us-gov-east-1/vpc/mcmCluster/eks-config/terragrunt.hcl b/lab/us-gov-east-1/vpc/mcmCluster/eks-config/terragrunt.hcl
@@ -0,0 +1,67 @@
+locals {
+  # In which AWS region are operations being performed
+  # vpc_id                                         = "vpc-0280f77b373744eaa"
+  # profile                                        = "224384469011-lab-dev-gov.inf-admin-t3"
+  # cluster_name                                   = "platform-eng-eks-test"
+  # subnets                                        = [
+  #                                                   "subnet-078b228071c609a50",
+  #                                                   "subnet-02c2250b9ec2dd6a2",
+  #                                                   "subnet-07a6339be3670fb41",
+  #                                                 ]
+  # security_group_all_worker_mgmt_id               = "sg-02b62e91afdbeba6b"
+  # eks_managed_node_groups_autoscaling_group_names = ["eks-eks-platform-eng-eks-test-nodegroup-20240501173536404400000016-3ec79a9c-f002-40c6-8358-29fbacfbb3e8"]
+
+  # region                                          = "us-gov-east-1"
+  # oidc_provider_arn                               = "arn:aws-us-gov:iam::224384469011:oidc-provider/oidc.eks.us-gov-east-1.amazonaws.com/id/7DE08671C3526A48AD5537E814DC2828"
+
+  tag_costallocation                              = "census:csvd:platformbaseline"
+  region                                          = "us-gov-east-1"
+  tags = {
+
+      "eks-cluster-name"      = "platform-eng-eks-test"
+      "CostAllocation"        = "census:csvd:platformbaseline"
+      "boc:tf_module_version" = "1.0.0"
+      "boc:created_by"        = "terraform"
+  }
+}
+
+terraform {
+  source      = "git@github.e.it.census.gov:SCT-Engineering/tfmod-eks-configuration.git"
+  extra_arguments "retry_lock" {
+    commands  = get_terraform_commands_that_need_locking()
+    arguments = ["-lock-timeout=20m"]
+  }
+}
+
+remote_state {
+  backend     = "s3"
+  generate    = {
+    path      = "backend.tf"
+    if_exists = "overwrite_terragrunt"
+  }
+  config = {
+    bucket         = "tg-infrastructure-tf-state-lab-dev-ew-us-gov-east-1"
+    key            = "platform-eks-test-config/terraform.tfstate"
+    region         = "us-gov-east-1"
+    encrypt        = true
+    #dynamodb_table = "my-lock-table"
+  }
+}
+
+dependency "eks" {
+  config_path = "../eks"
+}
+
+inputs = {
+  profile                                         = dependency.eks.inputs.profile
+  vpc_id                                          = dependency.eks.outputs.vpc_id
+  cluster_name                                    = dependency.eks.inputs.cluster_name
+  cluster_autoscaler_role_name                    = dependency.eks.outputs.cluster_autoscaler_role_name
+  subnets                                         = dependency.eks.outputs.subnets
+  security_group_all_worker_mgmt_id               = dependency.eks.outputs.security_group_all_worker_mgmt_id
+  eks_managed_node_groups_autoscaling_group_names = dependency.eks.outputs.eks_managed_node_groups_autoscaling_group_names
+  oidc_provider_arn                               = dependency.eks.outputs.oidc_provider_arn
+  tags                                            = local.tags
+  tag_costallocation                              = local.tag_costallocation
+  region                                          = local.region
+}
diff --git a/lab/us-gov-east-1/vpc/mcmCluster/eks/terragrunt.hcl b/lab/us-gov-east-1/vpc/mcmCluster/eks/terragrunt.hcl
@@ -4,6 +4,7 @@ include "root" {
 }
 
 locals {
+  region_vars = read_terragrunt_config(find_in_parent_folders("region.hcl"))
   # In which AWS region are operations being performed
   vpc_name               = "vpc3-lab-dev"
   cluster_name           = "platform-eng-eks-mcm"
@@ -18,7 +19,7 @@ locals {
   enable_cluster_creator_admin_permissions = true
   cluster_endpoint_public_access  = true
   profile                = "224384469011-lab-dev-gov"
-
+  region                 = local.region_vars.locals.aws_region
   # Tags applied to AWS objects created
   tags = {
       "Environment"           = "dev"
@@ -33,6 +34,12 @@ locals {
       username : "admin"
       groups = ["system:masters"]
     },
+    {
+      rolearn : "arn:aws-us-gov:iam::224384469011:role/r-inf-terraform"
+      aws_rolename : ""
+      username : "admin"
+      groups = ["system:masters"]
+    },
     {
       rolearn : "arn:aws-us-gov:iam::224384469011:role/AWSReservedSSO_inf-admin-t2_f3912d726991bbfa"
       aws_rolename : ""
@@ -67,4 +74,5 @@ inputs = {
   tags                   = local.tags
   aws_auth_roles         = local.aws_auth_roles
   domain                 = local.domain
+  region                 = local.region
 }
diff --git a/lab/us-gov-east-1/vpc/mcmCluster/terragrunt.hcl b/lab/us-gov-east-1/vpc/mcmCluster/terragrunt.hcl
@@ -21,14 +21,16 @@ locals {
   project_name   = "csvd_platformbaseline"
   project_role   = "csvd_platformbaseline_mcm"
   creator        = "matthew.c.morgan@census.gov"
+  profile        = "224384469011-lab-dev-gov"
 }
 
 generate "provider" {
   path      = "provider.tf"
   if_exists = "overwrite_terragrunt"
   contents  = <<EOF
 provider "aws" {
-  region = "us-gov-east-1"
+  region = "${local.region_vars.locals.aws_region}"
+  profile = "${local.profile}"
   default_tags {
     tags = {
       ProjectNumber = "${local.project_number}"