- Install Terraform version
1.1.4and Terragrunt versionv0.36.0or newer - Configure our AWS credentials using one of the supported authenticationmechanisms.
- Fill in our AWS Account ID's in
{environment}/env.hcl.
cdinto the module's folder (e.g.cd dev/ap-southeast-1/vpc).- Run
terragrunt planto see the changes we're about to apply. - If the plan looks good, run
terragrunt apply.
cdinto the region folder (e.g.cd dev).- Run
terragrunt run-all planto see all the changes we're about to apply. - If the plan looks good, run
terragrunt run-all apply.
The code in this repo uses the following folder hierarchy:
environment
└ _global
└ region
└ resource
Where:
-
Environment: At the top level are each of our environment that associated with a specific AWS accounts, such as
dev,qa,stg,prd... etc. -
Region: Within each environment, there will be one or more AWS regions, such as
us-east-1,eu-west-1, andap-southeast-2, where we've deployed resources and implement Dissater Recovery solution. There may also be a_globalfolder that defines resources that are available across all the environments in this AWS region, such as Route 53 A records, SNS topics, and ECR repos... -
Resource: Within each environment, we deploy all the resources for that environment, such as EC2 Instances, Auto Scaling Groups, ECS Clusters, Databases, Load Balancers, and so on.
In the situation where we have multiple AWS accounts or regions, we often have to pass common variables down to each of our modules. Rather than copy/pasting the same variables into each terragrunt.hcl file, in every region, and in every environment, we can inherit them from the inputs defined in the root terragrunt.hcl file.
Upcoming:
- AWS OpenSearch
- EC2 Image Builder
- Auto Scaling Group