Skip to content

Commit 15e1412

Browse files
abbas-khan10abbas-khan10
committed
add api gateway logging role for cloudwatch
1 parent 89ed38c commit 15e1412

File tree

20 files changed

+126
-44
lines changed

20 files changed

+126
-44
lines changed

infrastructure/README.md

Lines changed: 24 additions & 8 deletions
Large diffs are not rendered by default.

infrastructure/iam.tf

Lines changed: 29 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -193,3 +193,32 @@ resource "aws_iam_role_policy_attachment" "ods_report_presign_url" {
193193
role = aws_iam_role.ods_report_presign_url_role.name
194194
policy_arn = aws_iam_policy.s3_document_data_policy_for_ods_report_lambda.arn
195195
}
196+
197+
resource "aws_iam_role" "api_gateway_cloudwatch" {
198+
count = local.is_sandbox ? 0 : 1
199+
name = "${terraform.workspace}_NdrAPIGatewayLogs"
200+
201+
assume_role_policy = jsonencode({
202+
Version = "2012-10-17"
203+
Statement = [
204+
{
205+
Action = "sts:AssumeRole"
206+
Effect = "Allow"
207+
Principal = {
208+
Service = "apigateway.amazonaws.com"
209+
}
210+
},
211+
]
212+
})
213+
}
214+
215+
resource "aws_iam_role_policy_attachment" "api_gateway_logs" {
216+
count = local.is_sandbox ? 0 : 1
217+
role = aws_iam_role.api_gateway_cloudwatch[0].name
218+
policy_arn = "arn:aws:iam::aws:policy/service-role/AmazonAPIGatewayPushToCloudWatchLogs"
219+
}
220+
221+
resource "aws_api_gateway_account" "logging" {
222+
count = local.is_sandbox ? 0 : 1
223+
cloudwatch_role_arn = aws_iam_role.api_gateway_cloudwatch[0].arn
224+
}

infrastructure/modules/app_config/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012
| <a name="provider_terraform"></a> [terraform](#provider\_terraform) | n/a |
1113

1214
## Modules

infrastructure/modules/cloudfront/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

infrastructure/modules/dynamo_db/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

infrastructure/modules/ecr/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

infrastructure/modules/ecs/README.md

Lines changed: 5 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

@@ -26,6 +28,7 @@ No modules.
2628
| [aws_cloudwatch_metric_alarm.ndr_ecs_service_cpu_high_alarm](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_metric_alarm) | resource |
2729
| [aws_cloudwatch_metric_alarm.ndr_ecs_service_cpu_low_alarm](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_metric_alarm) | resource |
2830
| [aws_ecs_cluster.ndr_ecs_cluster](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_cluster) | resource |
31+
| [aws_ecs_cluster_capacity_providers.fargate](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_cluster_capacity_providers) | resource |
2932
| [aws_ecs_service.ndr_ecs_service](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_service) | resource |
3033
| [aws_ecs_task_definition.ndr_ecs_task](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_task_definition) | resource |
3134
| [aws_iam_role.task_exec](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource |

infrastructure/modules/firewall_waf_v2/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

infrastructure/modules/gateway/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

infrastructure/modules/kms/README.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,14 @@
11
## Requirements
22

3-
No requirements.
3+
| Name | Version |
4+
|------|---------|
5+
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | ~> 5.0 |
46

57
## Providers
68

79
| Name | Version |
810
|------|---------|
9-
| <a name="provider_aws"></a> [aws](#provider\_aws) | n/a |
11+
| <a name="provider_aws"></a> [aws](#provider\_aws) | ~> 5.0 |
1012

1113
## Modules
1214

0 commit comments

Comments
 (0)