Pinned Repositories
terraform-account-starter
Starting point for account level terraform. To be modified as needed.
terraform-aws-config-recorder
Configures config recorder for an AWS account
terraform-aws-ec2-instance-profile-builder
This module helps build a default, or custom, AWS EC2 Instance Profiles.
terraform-aws-ecs-fargate-codepipeline
ecs-fargate-codepipeline creates an end to end fargate cluster with a single task (but can be multiple containers in the task), a CodeDeploy application deployment configuration, a CodePipeline to wrap around it, and all relevant iam roles etc.
terraform-aws-iam-group-restricted-read-only
terraform-aws-iam-group-restricted-admin is used to create a group with roles and policies needed to have read only access after MFA with a few restrictions (can't get most bucket objects, download lambda function code, etc.)
terraform-aws-iam-role-cross-account-trusting
This is used to trust other accounts to assume a role in the target account
terraform-aws-multiaccount-pipeline
Terraform module to create a CICD pipeline for planning and applying terraform in a multi-account scenario.
terraform-aws-terraform-state-s3-bucket-centralized-with-roles
This is intended to be used by an organization for all of their own accounts. This does not protect access to DynamoDB locking of other accounts, it only restricts access S3 paths for each account. This restriction is put in place by creating a unique role for each account, then creating an assumerole policy that trusts the corresponding account to assume it.
terraform-aws-transfer-server-custom-idp
This is a Terraform module to create a custom identity provider based on AWS Secrets for the AWS SFTP service.
terraform-aws-transfer-server-custom-idp-user
This is a Terraform module to create users for the AWS SFTP service based on custom identity provider using AWS Secrets Manager.
StratusGrid's Repositories
StratusGrid/terraform-aws-interview-starter
A basic repository which can be given to interviewees to use as a base for their project.
StratusGrid/terraform-fortios-address-group-builder
This module takes a map of network configurations and makes address groups for each one, nested in an address group.
StratusGrid/terraform-aws-anomaly-detection-alerts
This module creates an AWS Cost Anomaly Detection monitor and subscription.
StratusGrid/terraform-aws-cloudwatch-alarms
This module will create a bunch of rules to cover the security alarms of a Well Architected Review
StratusGrid/terraform-aws-lambda-redis-slowlog-to-cw-logs
This solution will poll redis servers for their slowlog entries and push them into a cloudwatch log group for each host
StratusGrid/terraform-aws-lb-target-group
lb-target-group creates a target group with a random name appended to the end with the proper lifecycle rules to be able to be replaced.
StratusGrid/terraform-aws-multiaccount-application-pipeline
This terraform module creates a multi-account Fargate application deployment pipeline.
StratusGrid/terraform-aws-athena-alb-table
Creates a named query in Athena for easy table creation from an S3 bucket.
StratusGrid/terraform-aws-backend-creation
Terraform module to deploy a backend on AWS with s3 and dynamodb
StratusGrid/terraform-aws-datadog-integration
Configures Datadog Integration, Forwarder, and Logs
StratusGrid/terraform-aws-elasticache-redis
Terraform module to provision an ElastiCache Redis Cluster
StratusGrid/terraform-aws-limits-monitor
Terraform module to deploy the AWS Limit Monitor Solution for monitoring AWS service limits.
StratusGrid/example-terraform-account-starter-implementation
example-terraform-account-starter-implementation
StratusGrid/terraform-aws-alb-public-web
alb-public-web is used to make a load balancer for standard 80/443 traffic which can automatically redirect all traffic to the secure port (443). The module uses a map of maps to be able to define multiple sites behind the same ALB (Maximum of 25!) to help with cost.
StratusGrid/terraform-aws-asg-web
asg-web makes an auto-scaling group and related scaling policies, as well as a target group which can be associated with a load balancer.
StratusGrid/terraform-aws-bitbucket-onprem-downloader
This module builds resources to listen for webhooks from an on-premise Bitbucket server, pull an archived copy of the repository triggering the webhook, and put it in S3 for codepipeline.
StratusGrid/terraform-aws-cloudtrail
Sets up CloudTrail for an AWS account, including encryption and writing to CliudWatch, an S3 bucket and an SNS topic
StratusGrid/terraform-aws-codebuild-webdeploy-package
codebuild-webdeploy-package is used to make a codebuild which will create a web deploy package for a .net or .net core application.
StratusGrid/terraform-aws-codepipeline-iac
Terraform module to plan and apply terraform using CodeSuite
StratusGrid/terraform-aws-lambda-event-handler-service-discovery-sync
Updates service discovery based on stopped/running events coming from ECS.
StratusGrid/terraform-aws-lambda-pipeline
Repository for Module for AWS Lambda CICD
StratusGrid/terraform-aws-private-registry-s3
Creates a Private Terraform Provider Registry in S3.
StratusGrid/terraform-aws-redis-idle-connection-cleanup
Lambda triggered on a scheduleto cleanup idle redis connection based on idle threshold input value. Can optionally create alarms from a list of elasticache node names and sns topic arn.
StratusGrid/terraform-aws-s3-bucket-kops-state
Bucket and policy to be used as a logging bucket
StratusGrid/terraform-aws-security-group-automated-cloudfront-whitelist
security-group-automated-cloudfront-whitelist maintains a set of security groups with ingress rules to match CloudFront regional and global IPs
StratusGrid/terraform-aws-sqs-queues-with-allowed-sns-topics
Queue and Deadletter queue that has trusting role set up for SNS Topics
StratusGrid/terraform-aws-sqs-queues-with-cross-account-send-message
Allows you to create a queue which will allow messages to be sent to the queue from a list of IAM Principals. Generally used to add permissions to the SQS queue for other AWS accounts to submit messages.
StratusGrid/terraform-aws-transfer-server-ad
This is a Terraform module to integrate the AWS SFTP Transfer Family Service to an existing AWS AD/Connector
StratusGrid/terraform-fortios-ikev2-hub-spoke-vpn-generator
terraform-fortios-ikev2-hub-spoke-vpn-generator
StratusGrid/terraform-sentinel-policies
Example Sentinel Policies for use with Terraform Cloud and Terraform Enterprise