Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Coalfire AWS Security Core Terraform Module

License

NotificationsYou must be signed in to change notification settings

CiscoOpsStack/terraform-aws-securitycore-ops_stack-module

 
 

Repository files navigation

Coalfire

AWS Security Core Terraform Module

Description

This module creates the necessary resources to store your Terraform code remotely in AWS.

FedRAMP Compliance: Moderate, High

Dependencies

  • IAM AWS Accounts

Resource List

  • S3 for Terraform State
  • DynamoDB for Terraform State
  • KMS keys for DynamoDB and S3
  • IAM roles for above resources

Deployment Steps

This module can be called as outlined below.

  • Change directories to theterraform-aws-securitycore directory.
  • From theterraform-aws-security-core directory runterraform init.
  • Runterraform plan to review the resources being created.
  • If everything looks correct in the plan output, runterraform apply.

Usage

Include example for how to call the module below with generic variables

provider"aws" {features {}}module"security-core" {source="github.com/Coalfire-CF/terraform-aws-securitycore"aws_region="us-gov-west-1"resource_prefix=var.resource_prefixapplication_account_numbers=var.app_account_idsaccount_number=data.aws_caller_identiy.mgmt_account.id}

Requirements

No requirements.

Providers

NameVersion
awsn/a

Modules

NameSourceVersion
dynamo_kms_keygithub.com/Coalfire-CF/terraform-aws-kmsn/a
s3-tstategithub.com/Coalfire-CF/terraform-aws-s3n/a
s3_kms_keygithub.com/Coalfire-CF/terraform-aws-kmsn/a

Resources

NameType
aws_dynamodb_table.dynamodb_resource
aws_iam_policy_document.s3_keydata source
aws_iam_policy_document.tfstate_bucket_policydata source
aws_partition.currentdata source

Inputs

NameDescriptionTypeDefaultRequired
account_numberaccount number for the mgmt accountstringn/ayes
application_account_numbersAccount IDs for application accounts to be used in IAMlist(string)n/ayes
aws_regionThe AWS region to create things instringn/ayes
create_dynamo_kms_keycreate KMS key for dynamodbbooltrueno
create_s3_kms_keycreate KMS key for S3booltrueno
resource_prefixThe prefix for the s3 bucket namesstringn/ayes

Outputs

NameDescription
dynamo_key_arnThe arn of the dynamo kms key
dynamo_key_idThe id of the dynamo key
dynamodb_table_namen/a
s3_key_arnThe arn of the s3 kms key
s3_key_iamThe name of the terraform state bucket
s3_key_idThe id of the s3 key
tstate_bucket_nameThe name of the terraform state bucket

Contributing

Relative or absolute link to contributing.md

License

License

Coalfire Pages

Absolute link to any relevant Coalfire Pages

Copyright

Copyright © 2023 Coalfire Systems Inc.

Requirements

NameVersion
terraform>=1.5.0
aws~> 5.0

Providers

NameVersion
aws~> 5.0

Modules

NameSourceVersion
s3-tstategithub.com/Coalfire-CF/terraform-aws-s3v1.0.1

Resources

NameType
aws_dynamodb_table.dynamodb_resource
aws_iam_policy_document.tfstate_bucket_policydata source

Inputs

NameDescriptionTypeDefaultRequired
application_account_numbersAccount IDs for application accounts to be used in IAMlist(string)n/ayes
aws_regionThe AWS region to create things instringn/ayes
dynamo_kms_key_arnARN for the CMK KMS key for DynamoDBstringn/ayes
resource_prefixThe prefix for the s3 bucket namesstringn/ayes
s3_kms_key_arnARN for the CMK KMS key for S3stringn/ayes

Outputs

NameDescription
dynamo_key_arnThe arn of the dynamo kms key
dynamo_key_idThe id of the dynamo key
dynamodb_table_namen/a
s3_key_arnThe arn of the s3 kms key
s3_key_iamThe name of the terraform state bucket
s3_key_idThe id of the s3 key
tstate_bucket_nameThe name of the terraform state bucket

About

Coalfire AWS Security Core Terraform Module

Resources

License

Contributing

Stars

Watchers

Forks

Packages

No packages published

Languages

  • HCL100.0%
[8]ページ先頭
©2009-2025 Movatter.jp