StratusGrid

Pinned Repositories

terraform-account-starter
Starting point for account level terraform. To be modified as needed.
Language:HCL4 3 80
terraform-aws-config-recorder
Configures config recorder for an AWS account
Language:HCL3 2 13
terraform-aws-ec2-instance-profile-builder
This module helps build a default, or custom, AWS EC2 Instance Profiles.
Language:HCL3 3 22
terraform-aws-ecs-fargate-codepipeline
ecs-fargate-codepipeline creates an end to end fargate cluster with a single task (but can be multiple containers in the task), a CodeDeploy application deployment configuration, a CodePipeline to wrap around it, and all relevant iam roles etc.
Language:HCL8 4 15
terraform-aws-iam-group-restricted-read-only
terraform-aws-iam-group-restricted-admin is used to create a group with roles and policies needed to have read only access after MFA with a few restrictions (can't get most bucket objects, download lambda function code, etc.)
Language:HCL2 3 21
terraform-aws-iam-role-cross-account-trusting
This is used to trust other accounts to assume a role in the target account
Language:HCL2 3 08
terraform-aws-multiaccount-pipeline
Terraform module to create a CICD pipeline for planning and applying terraform in a multi-account scenario.
Language:HCL2 3 70
terraform-aws-terraform-state-s3-bucket-centralized-with-roles
This is intended to be used by an organization for all of their own accounts. This does not protect access to DynamoDB locking of other accounts, it only restricts access S3 paths for each account. This restriction is put in place by creating a unique role for each account, then creating an assumerole policy that trusts the corresponding account to assume it.
Language:HCL7 3 34
terraform-aws-transfer-server-custom-idp
This is a Terraform module to create a custom identity provider based on AWS Secrets for the AWS SFTP service.
Language:HCL5 4 56
terraform-aws-transfer-server-custom-idp-user
This is a Terraform module to create users for the AWS SFTP service based on custom identity provider using AWS Secrets Manager.
Language:HCL3 4 24

StratusGrid's Repositories

StratusGrid/terraform-aws-ecs-fargate-codepipeline
ecs-fargate-codepipeline creates an end to end fargate cluster with a single task (but can be multiple containers in the task), a CodeDeploy application deployment configuration, a CodePipeline to wrap around it, and all relevant iam roles etc.
Language:HCL8 4 15
StratusGrid/terraform-aws-terraform-state-s3-bucket-centralized-with-roles
This is intended to be used by an organization for all of their own accounts. This does not protect access to DynamoDB locking of other accounts, it only restricts access S3 paths for each account. This restriction is put in place by creating a unique role for each account, then creating an assumerole policy that trusts the corresponding account to assume it.
Language:HCL7 3 34
StratusGrid/terraform-aws-transfer-server-custom-idp
This is a Terraform module to create a custom identity provider based on AWS Secrets for the AWS SFTP service.
Language:HCL5 4 56
StratusGrid/terraform-account-starter
Starting point for account level terraform. To be modified as needed.
Language:HCL4 3 80
StratusGrid/terraform-aws-config-recorder
Configures config recorder for an AWS account
Language:HCL3 2 13
StratusGrid/terraform-aws-ec2-instance-profile-builder
This module helps build a default, or custom, AWS EC2 Instance Profiles.
Language:HCL3 3 22
StratusGrid/terraform-aws-transfer-server-custom-idp-user
This is a Terraform module to create users for the AWS SFTP service based on custom identity provider using AWS Secrets Manager.
Language:HCL3 4 24
StratusGrid/terraform-aws-iam-group-restricted-read-only
terraform-aws-iam-group-restricted-admin is used to create a group with roles and policies needed to have read only access after MFA with a few restrictions (can't get most bucket objects, download lambda function code, etc.)
Language:HCL2 3 21
StratusGrid/terraform-aws-iam-role-cross-account-trusting
This is used to trust other accounts to assume a role in the target account
Language:HCL2 3 08
StratusGrid/terraform-aws-multiaccount-pipeline
Terraform module to create a CICD pipeline for planning and applying terraform in a multi-account scenario.
Language:HCL2 3 70
StratusGrid/backstage-aws-walkthrough
Terraform and instructions for provisioning Backstage on AWS for evaluation purposes.
Language:TypeScript1 1 00
StratusGrid/terraform-aws-ecs-service
ecs-fargate-service is used to create an ecs service and the corresponding codedeploy, log groups, codepipeline artifacts, etc. It is intended to be used with StratusGrid's multi-account ecs pipeline module to allow for container images to be passed immutably from cluster to cluster in different environments and accounts in a single contiguous pipeline.
Language:HCL1 3 12
StratusGrid/terraform-aws-iam-group-with-user-self-service
This module is used to create an IAM group which has user self service permissions.
Language:HCL1 3 01
StratusGrid/terraform-aws-iam-role-vmimport
Configures aws account with with an iam role to facilitate vm imports with vm import export service using an existing import bucket
Language:HCL1 3 01
StratusGrid/terraform-aws-acm-certificate-creation
Module used to automate ACM creation, Route53 record creation, and certificate validation.
Language:HCL02
StratusGrid/terraform-aws-firehose-datadog-metrics-streaming
Language:HCL0 1 00
StratusGrid/terraform-aws-s3-bucket-logging
S3 bucket to be used as logging target for other resources
Language:HCL0 3 33
StratusGrid/terraform-github-repository-creation
Terraform module for GitHub repository creation
Language:HCL0 1 20
StratusGrid/workflow-config
Repository that stores the StratusGrid Github workflows
Language:HCL00
StratusGrid/.github
The .github repo is a special repository that holds GitHub configuration for the organization.
StratusGrid/terraform-aws-config-rules
AWS Config rules module to put in standard policies
Language:HCL2 22
StratusGrid/terraform-aws-datadog-integration-streaming
Language:HCL1 0
StratusGrid/terraform-aws-ecs-iam-role-builder
ecs-iam-role-builder helps create an iam role with or without a custom policy(ies). It adds cloudwatch log rights to IAM as well as being able to attach custom policies
Language:HCL1
StratusGrid/terraform-aws-guard-duty-notifications
terraform-aws-guard-duty
Language:HCL
StratusGrid/terraform-aws-iam-cross-account-trust-maps
Maps assume role rights to trusted account resources for specific trusting account
Language:HCL2
StratusGrid/terraform-aws-iam-group-restricted-admin
terraform-aws-iam-group-restricted-admin is used to create a group with roles and policies needed to have admin access after MFA with a few restrictions (can't delete logs or audit trails for instance)
Language:HCL3 11
StratusGrid/terraform-aws-lambda-event-handler-cpu-creditbalance
This module will deploy a lambda function which will listen for ec2 instance running/stopped/terminated events and put/delete CreditBalance alarms for cpu credits.
Language:HCL1
StratusGrid/terraform-aws-lambda-event-handler-ebs-burstbalance
This module will deploy a lambda function which will listen for ebs volume creation/deletion events and put/delete BurstBalance alarms for gp2 volumes.
Language:HCL3 51
StratusGrid/terraform-aws-single-account-starter
This is meant to be used for an organization which will reside entirely inside one single AWS account.
Language:HCL2 0
StratusGrid/terraform-readme-template
This repository serves as a central location for managing Markdown (.md) files used for README documentation across various projects within our organization. Markdown files provide a lightweight and easy-to-read format for documenting project setup instructions, usage guidelines, contribution guidelines, and other relevant information.