Added Test example to tf modules

Author: akhil-sumologic

.gitignore

@@ -13,3 +13,11 @@
 
 # Dependency directories (remove the comment below to include it)
 # vendor/
+
+
+# Terraform files
+*.terraform
+*.tfstate
+*.tfstate.backup
+*.terraform.lock.hcl
+.idea

aws/cloudtrail/cloudtrail.tf

@@ -12,14 +12,19 @@ resource "random_string" "aws_random" {
   upper   = false
 }
 
+# Default s3 bucket acl is private, if you want to update uncomment the following block
+# For more details refer https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_acl
 resource "aws_s3_bucket" "s3_bucket" {
   for_each = toset(var.source_details.bucket_details.create_bucket ? ["s3_bucket"] : [])
 
   bucket        = local.bucket_name
   force_destroy = var.source_details.bucket_details.force_destroy_bucket
+}
 
+resource "aws_s3_bucket_policy" "s3_bucket" {
+  bucket = aws_s3_bucket.s3_bucket["s3_bucket"].id
   policy = templatefile("${path.module}/templates/cloudtrail_bucket_policy.tmpl", {
-    BUCKET_NAME = local.bucket_name
+    BUCKET_NAME     = aws_s3_bucket.s3_bucket["s3_bucket"].id
   })
 }
 
@@ -47,6 +52,7 @@ resource "aws_s3_bucket_notification" "bucket_notification" {
 }
 
 resource "aws_cloudtrail" "cloudtrail" {
+  depends_on = [aws_s3_bucket_policy.s3_bucket]
   for_each = toset(local.create_trail ? ["cloudtrail"] : [])
 
   name                          = local.cloudtrail_name

aws/cloudtrail/examples/default/data.tf

@@ -0,0 +1,17 @@
+data "aws_region" "current" {}
+
+data "aws_caller_identity" "current" {}
+
+data "sumologic_caller_identity" "current" {}
+
+output "aws_account_id" {
+  value = data.aws_caller_identity.current.account_id
+}
+
+output "aws_region_data" {
+  value = data.aws_region.current
+}
+
+output "sumologic_env" {
+  value = data.sumologic_caller_identity.current
+}

aws/cloudtrail/examples/default/local.tf

@@ -0,0 +1,35 @@
+locals {
+  # Wait time
+  wait_for_seconds = 180
+
+  # AWS account details
+  aws_account_id = data.aws_caller_identity.current.account_id
+  aws_region = data.aws_region.current.name
+  create_iam_role = true
+  # common_bucket_name = "aws-observability-${random_string.aws_random.id}"
+
+  # Sumo AWS account ID
+  sumo_account_id = "926226587429"
+  # Sumo account Details
+  sumologic_organization_id = "0000000000285A74"
+  sumologic_existing_collector_id = 170655886
+  sumologic_environment = "us1"
+
+  # CloudTrail Source updated Details
+  create_collector = true
+  create_trail = true
+  create_sns_topic = true
+  cloudtrail_source_details = {
+    source_name     = "CloudTrail Logs (Region)"
+    source_category = "aws/observability/cloudtrail/logs"
+    description     = "This source is created using Sumo Logic terraform AWS Observability module to collect AWS cloudtrail logs."
+    bucket_details  = {
+      create_bucket        = true
+      bucket_name          = "aws-observability-random-${local.sumologic_existing_collector_id}"
+      path_expression      = "AWSLogs/${local.aws_account_id}/CloudTrail/${local.aws_region}/*"
+      force_destroy_bucket = true
+    }
+  }
+  cloudtrail_fields      = { account = local.aws_account_id }
+  cloudtrail_source_bucket_name = "akhil_${local.aws_region}_${local.sumologic_organization_id}"
+}

aws/cloudwatchmetrics/examples/main.auto.tfvars renamed to aws/cloudtrail/examples/default/main.auto.tfvars

@@ -0,0 +1,35 @@
+
+module "cloudtrail_module" {
+  source = "../../../cloudtrail"
+
+  create_collector          = local.create_collector
+  create_trail              = local.create_trail
+  sumologic_organization_id = local.sumologic_organization_id
+  wait_for_seconds          = 20
+
+  source_details = {
+    source_name     = local.cloudtrail_source_details.source_name
+    source_category = local.cloudtrail_source_details.source_category
+    description     = local.cloudtrail_source_details.description
+    collector_id    = local.sumologic_existing_collector_id
+    bucket_details = {
+      create_bucket        = true
+      bucket_name          = local.cloudtrail_source_details.bucket_details.bucket_name
+      path_expression      = local.cloudtrail_source_details.bucket_details.path_expression
+      force_destroy_bucket = false
+    }
+    paused               = false
+    scan_interval        = 60000
+    sumo_account_id      = local.sumo_account_id
+    cutoff_relative_time = "-1d"
+    fields               = local.cloudtrail_fields
+    iam_details = {
+      create_iam_role = true
+      iam_role_arn    = null
+    }
+    sns_topic_details = {
+      create_sns_topic = true
+      sns_topic_arn = null
+    }
+  }
+}

aws/cloudtrail/examples/default/main.tf

@@ -0,0 +1,14 @@
+terraform {
+  required_version = ">= 0.13.0"
+
+  required_providers {
+    sumologic = {
+      version = ">= 2.28.3, < 3.0.0"
+      source  = "SumoLogic/sumologic"
+    }
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 5.43.0"
+    }
+  }
+}

aws/cloudwatchmetrics/examples/provider.tf renamed to aws/cloudtrail/examples/default/provider.tf

@@ -3,11 +3,11 @@ terraform {
 
   required_providers {
     aws = {
-      source  = "hashicorp/aws"
-      version = ">= 3.42.0"
+          source  = "hashicorp/aws"
+          version = ">= 5.16.2, < 6.0.0"
     }
     sumologic = {
-      version = ">= 2.9.0"
+      version = ">= 2.28.3, < 3.0.0"
       source  = "SumoLogic/sumologic"
     }
     time = {