Skip to content

Commit d7a1b04

Browse files
jordanstephensjordanstephens
committed
rough cut of resources by account and by project
1 parent e48049b commit d7a1b04

File tree

1 file changed

+76
-80
lines changed

1 file changed

+76
-80
lines changed

docs/providers/aws/aws.md

Lines changed: 76 additions & 80 deletions
Original file line numberDiff line numberDiff line change
@@ -66,86 +66,82 @@ When using [Managed Redis](/docs/concepts/managed-storage/managed-redis.md), the
6666

6767
### Managed Resources
6868

69-
Defang manages the following resources in your AWS account:
69+
Defang will create and manage the following resources in your AWS account as part of its bootstrap procedure:
7070

7171
```
72-
Current stack resources (77):
73-
TYPE NAME
74-
pulumi:pulumi:Stack welcome-to-defang-beta
75-
├─ defang-mvp:shared/ecs/defang:Defang defang
76-
│ ├─ defang-mvp:shared/ecs/kaniko:Kaniko kaniko
77-
│ │ ├─ aws:cloudwatch/logGroup:LogGroup builds
78-
│ │ ├─ aws:iam/role:Role kaniko-task-role
79-
│ │ ├─ aws:ecs/taskDefinition:TaskDefinition kanikoTaskDefArm64
80-
│ │ └─ aws:ecs/taskDefinition:TaskDefinition kanikoTaskDefAmd64
81-
│ ├─ aws:s3/bucket:Bucket defang-build
82-
│ ├─ aws:s3/bucketPublicAccessBlock:BucketPublicAccessBlock defang-build-block
83-
│ ├─ aws:ecs/cluster:Cluster cluster
84-
│ └─ aws:ecs/clusterCapacityProviders:ClusterCapacityProviders cluster-capacity-providers
85-
├─ defang-mvp:cd/tenant_stack:TenantStack bootstrap
86-
│ ├─ defang-mvp:shared/fargate_service:FargateService welcome-to-defang_app
87-
│ │ └─ aws:ec2/securityGroup:SecurityGroup welcome-to-defang_app-sg
88-
│ ├─ defang-mvp:shared/ecs/kaniko_image:KanikoImage app-image
89-
│ └─ aws:ec2/securityGroup:SecurityGroup bootstrap
90-
├─ aws:ec2/vpcDhcpOptions:VpcDhcpOptions dhcp-options
91-
├─ aws:cloudwatch/logGroup:LogGroup logs
92-
├─ aws:cloudwatch/logGroup:LogGroup ecs
93-
├─ aws:s3/bucket:Bucket alb-logs
94-
├─ aws:ecr/pullThroughCacheRule:PullThroughCacheRule ecr-public
95-
├─ aws:iam/role:Role ecs-agent-profile
96-
├─ aws:s3/bucketPolicy:BucketPolicy alb-logs-policy
97-
├─ aws:s3/bucketPublicAccessBlock:BucketPublicAccessBlock alb-logs-block
98-
├─ awsx:ecr:Repository welcome-to-defang/kaniko-build
99-
│ ├─ aws:ecr/repository:Repository welcome-to-defang/kaniko-build
100-
│ └─ aws:ecr/lifecyclePolicy:LifecyclePolicy welcome-to-defang/kaniko-build
101-
├─ awsx:ec2:Vpc shared-vpc
102-
│ └─ aws:ec2/vpc:Vpc shared-vpc
103-
│ ├─ aws:ec2/internetGateway:InternetGateway shared-vpc
104-
│ ├─ aws:ec2/subnet:Subnet shared-vpc-private-3
105-
│ │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-3
106-
│ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-3
107-
│ │ └─ aws:ec2/route:Route shared-vpc-private-3
108-
│ ├─ aws:ec2/subnet:Subnet shared-vpc-private-1
109-
│ │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-1
110-
│ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-1
111-
│ │ └─ aws:ec2/route:Route shared-vpc-private-1
112-
│ ├─ aws:ec2/subnet:Subnet shared-vpc-private-2
113-
│ │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-2
114-
│ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-2
115-
│ │ └─ aws:ec2/route:Route shared-vpc-private-2
116-
│ ├─ aws:ec2/vpcEndpoint:VpcEndpoint com.amazonaws.us-west-2.s3
117-
│ ├─ aws:ec2/subnet:Subnet shared-vpc-public-1
118-
│ │ ├─ aws:ec2/routeTable:RouteTable shared-vpc-public-1
119-
│ │ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-1
120-
│ │ │ └─ aws:ec2/route:Route shared-vpc-public-1
121-
│ │ ├─ aws:ec2/eip:Eip shared-vpc-1
122-
│ │ └─ aws:ec2/natGateway:NatGateway shared-vpc-1
123-
│ ├─ aws:ec2/subnet:Subnet shared-vpc-public-2
124-
│ │ └─ aws:ec2/routeTable:RouteTable shared-vpc-public-2
125-
│ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-2
126-
│ │ └─ aws:ec2/route:Route shared-vpc-public-2
127-
│ └─ aws:ec2/subnet:Subnet shared-vpc-public-3
128-
│ └─ aws:ec2/routeTable:RouteTable shared-vpc-public-3
129-
│ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-3
130-
│ └─ aws:ec2/route:Route shared-vpc-public-3
131-
├─ aws:iam/role:Role ecs-task-role
132-
├─ aws:acm/certificate:Certificate *.welcome-to-defang.jordanstephens.defang.app
133-
├─ awsx:ecr:Repository welcome-to-defang/kaniko-build/cache
134-
│ ├─ aws:ecr/repository:Repository welcome-to-defang/kaniko-build/cache
135-
│ └─ aws:ecr/lifecyclePolicy:LifecyclePolicy welcome-to-defang/kaniko-build/cache
136-
├─ aws:iam/instanceProfile:InstanceProfile ecs-agent-profile
137-
├─ aws:iam/role:Role ecs-task-execution-role
138-
├─ aws:cloudwatch/eventRule:EventRule welcome-to-defang-ecs-lifecycle-rule
139-
├─ aws:cloudwatch/eventTarget:EventTarget welcome-to-defang-ecs-event-cw-target
140-
├─ aws:route53/record:Record validation-welcome-to-defang.jordanstephens.defang.app
141-
├─ aws:acm/certificateValidation:CertificateValidation *.welcome-to-defang.jordanstephens.defang.appValidation
142-
├─ aws:ec2/vpcDhcpOptionsAssociation:VpcDhcpOptionsAssociation dhcp-options-association
143-
├─ aws:ec2/networkAcl:NetworkAcl shared-nacl
144-
├─ aws:ec2/securityGroup:SecurityGroup sg443
145-
├─ pulumi:providers:aws default_6_37_1
146-
├─ pulumi:providers:awsx default_2_14_0
147-
├─ pulumi:providers:aws default_6_47_0
148-
├─ pulumi:providers:aws default
149-
├─ pulumi:providers:pulumi default
150-
└─ pulumi:providers:pulumi-nodejs default
72+
* aws:cloudwatch/logGroup:LogGroup ecs
73+
* aws:s3/bucket:Bucket alb-logs
74+
* aws:ecr/pullThroughCacheRule:PullThroughCacheRule ecr-public
75+
* aws:iam/role:Role ecs-agent-profile
76+
* aws:s3/bucketPolicy:BucketPolicy alb-logs-policy
77+
* aws:s3/bucketPublicAccessBlock:BucketPublicAccessBlock alb-logs-block
78+
* awsx:ec2:Vpc shared-vpc
79+
* └─ aws:ec2/vpc:Vpc shared-vpc
80+
* ├─ aws:ec2/internetGateway:InternetGateway shared-vpc
81+
* ├─ aws:ec2/subnet:Subnet shared-vpc-private-3
82+
* │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-3
83+
* │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-3
84+
* │ └─ aws:ec2/route:Route shared-vpc-private-3
85+
* ├─ aws:ec2/subnet:Subnet shared-vpc-private-1
86+
* │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-1
87+
* │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-1
88+
* │ └─ aws:ec2/route:Route shared-vpc-private-1
89+
* ├─ aws:ec2/subnet:Subnet shared-vpc-private-2
90+
* │ └─ aws:ec2/routeTable:RouteTable shared-vpc-private-2
91+
* │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-private-2
92+
* │ └─ aws:ec2/route:Route shared-vpc-private-2
93+
* ├─ aws:ec2/vpcEndpoint:VpcEndpoint com.amazonaws.us-west-2.s3
94+
* ├─ aws:ec2/subnet:Subnet shared-vpc-public-1
95+
* │ ├─ aws:ec2/routeTable:RouteTable shared-vpc-public-1
96+
* │ │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-1
97+
* │ │ └─ aws:ec2/route:Route shared-vpc-public-1
98+
* │ ├─ aws:ec2/eip:Eip shared-vpc-1
99+
* │ └─ aws:ec2/natGateway:NatGateway shared-vpc-1
100+
* ├─ aws:ec2/subnet:Subnet shared-vpc-public-2
101+
* │ └─ aws:ec2/routeTable:RouteTable shared-vpc-public-2
102+
* │ ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-2
103+
* │ └─ aws:ec2/route:Route shared-vpc-public-2
104+
* └─ aws:ec2/subnet:Subnet shared-vpc-public-3
105+
* └─ aws:ec2/routeTable:RouteTable shared-vpc-public-3
106+
* ├─ aws:ec2/routeTableAssociation:RouteTableAssociation shared-vpc-public-3
107+
* └─ aws:ec2/route:Route shared-vpc-public-3
108+
* aws:iam/role:Role ecs-task-role
109+
* aws:ec2/networkAcl:NetworkAcl shared-nacl
110+
* aws:ec2/securityGroup:SecurityGroup sg443
111+
```
112+
113+
Then, defang will manage the following resources for each project you deploy:
114+
115+
```
116+
* awsx:ecr:Repository project1/kaniko-build
117+
* ├─ aws:ecr/repository:Repository project1/kaniko-build
118+
* └─ aws:ecr/lifecyclePolicy:LifecyclePolicy project1/kaniko-build
119+
* aws:acm/certificate:Certificate *.project1.tenant1.defang.app
120+
* awsx:ecr:Repository project1/kaniko-build/cache
121+
* ├─ aws:ecr/repository:Repository project1/kaniko-build/cache
122+
* └─ aws:ecr/lifecyclePolicy:LifecyclePolicy project1/kaniko-build/cache
123+
* aws:iam/instanceProfile:InstanceProfile ecs-agent-profile
124+
* aws:iam/role:Role ecs-task-execution-role
125+
* aws:cloudwatch/eventRule:EventRule project1-ecs-lifecycle-rule
126+
* aws:cloudwatch/eventTarget:EventTarget project1-ecs-event-cw-target
127+
* aws:route53/record:Record validation-project1.tenant1.defang.app
128+
* aws:acm/certificateValidation:CertificateValidation *.project1.tenant1.defang.appValidation
129+
* aws:ec2/vpcDhcpOptionsAssociation:VpcDhcpOptionsAssociation dhcp-options-association
130+
* defang-mvp:shared/ecs/defang:Defang defang
131+
* ├─ defang-mvp:shared/ecs/kaniko:Kaniko kaniko
132+
* │ ├─ aws:cloudwatch/logGroup:LogGroup builds
133+
* │ ├─ aws:iam/role:Role kaniko-task-role
134+
* │ ├─ aws:ecs/taskDefinition:TaskDefinition kanikoTaskDefArm64
135+
* │ └─ aws:ecs/taskDefinition:TaskDefinition kanikoTaskDefAmd64
136+
* ├─ aws:s3/bucket:Bucket defang-build
137+
* ├─ aws:s3/bucketPublicAccessBlock:BucketPublicAccessBlock defang-build-block
138+
* ├─ aws:ecs/cluster:Cluster cluster
139+
* └─ aws:ecs/clusterCapacityProviders:ClusterCapacityProviders cluster-capacity-providers
140+
* defang-mvp:cd/tenant_stack:TenantStack bootstrap
141+
* ├─ defang-mvp:shared/fargate_service:FargateService project1_app
142+
* │ └─ aws:ec2/securityGroup:SecurityGroup project1_app-sg
143+
* ├─ defang-mvp:shared/ecs/kaniko_image:KanikoImage app-image
144+
* └─ aws:ec2/securityGroup:SecurityGroup bootstrap
145+
* aws:ec2/vpcDhcpOptions:VpcDhcpOptions dhcp-options
146+
* aws:cloudwatch/logGroup:LogGroup logs
151147
```

0 commit comments

Comments
 (0)