Add multi-cloud support and comprehensive documentation

valter-silva-au · valter-silva-au · commit ccfc400e5af1 · 2025-06-10T13:52:32.000+08:00
Update development environment to support AWS, Azure, and GCP with necessary tools and CLIs. Add detailed USAGE.md guide for setup and configuration. Update CHANGELOG.md with version 1.2.2 features and enhancements. Improve README with additional information.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,40 +1,45 @@
-# Change Log
+# Changelog
 
-All notable changes to this project will be documented in this file.
+All notable changes to the Terraform Development Environment will be documented in this file.
 
-The format is based on [Keep a Changelog](http://keepachangelog.com/)
-and this project adheres to [Semantic Versioning](http://semver.org/).
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## [1.2.1](https://github.com/awslabs/aws-terraform-dev-container/compare/v1.2.0...v1.2.1) (2023-01-06)
-
-
-### Bug Fixes
-
-* remove installation of tools, since there's no tf project ([9aad887](https://github.com/awslabs/aws-terraform-dev-container/commit/9aad88774ebebb4a5772e3aa9004e14b69e4eea9))
-
-## [1.2.0](https://github.com/awslabs/aws-terraform-dev-container/compare/v1.1.0...v1.2.0) (2023-01-06)
-
-
-### Features
-
-* create worfklow to release project ([0e83f23](https://github.com/awslabs/aws-terraform-dev-container/commit/0e83f2321dd530cc6fb575fc492ad0e828907367))
-
-
-### Bug Fixes
-
-* correct package name ([e32b5ce](https://github.com/awslabs/aws-terraform-dev-container/commit/e32b5ce3ee28e7da6421907445935275fe36d0d9))
-
-## [Unreleased]
-
-## [v1.1.0] - 2022-10-28
+## [1.2.2] - 2025-06-10
 
 ### Added
 
-- [Adopt AWS Code Habits](https://github.com/awslabs/aws-code-habits)
-
-## [v1.0.0] - 2022-10-14
-
-First release! 🚀
-
-[unreleased]: https://github.com/awslabs/aws-terraform-dev-container/compare/v1.0.0...HEAD
-[1.1.0]: https://github.com/awslabs/aws-terraform-dev-container/compare/v1.0.0...v1.1.0
+- Initial release of the Terraform Development Environment
+- Multi-cloud support for AWS, Azure, and GCP
+- Terraform CLI v1.5.7
+- Supporting tools:
+  - terraform-docs v0.16.0
+  - tflint v0.47.0 with AWS, Azure, and GCP rulesets
+  - tfsec v1.28.0
+  - terrascan v1.18.3
+  - terragrunt v0.48.0
+  - infracost v0.10.28
+  - checkov v2.3.360
+- Cloud provider CLIs:
+  - AWS CLI v2
+  - Azure CLI
+  - Google Cloud SDK
+- Authentication helper scripts for AWS, Azure, and GCP
+- Pre-commit hooks for Terraform validation, formatting, and security scanning
+- VS Code tasks for common Terraform operations
+- VS Code settings and extensions for Terraform development
+- Persistent volume mounts for credentials and caching
+- Comprehensive documentation in README.md and USAGE.md
+
+### Changed
+
+- Updated from the base AWS Terraform Dev Container
+- Enhanced Dockerfile with modular installation scripts
+- Improved pre-commit configuration with additional hooks
+- Extended VS Code tasks and settings
+
+### Fixed
+
+- Path issues in post-start script
+- Permission issues with credential directories
+- TFLint configuration for multi-cloud support
diff --git a/README.md b/README.md
@@ -1,111 +1,173 @@
-<!--
-  ** MANAGED BY AWS CODE HABITS
-  ** DO NOT EDIT THIS FILE
-  **
-  ** 1) Make all changes to `doc/habits.yaml`
-  ** 2) Run `make doc/build` to rebuild this file
-  **
--->
+# Terraform Development Environment
 
-![logo][logo]
+A comprehensive VS Code Dev Container with tools to help you build and manage infrastructure with Terraform across AWS, Azure, and GCP.
 
+## Features
 
-# AWS Terraform Dev Container
+- **Multi-cloud Support**: Pre-installed CLIs and tools for AWS, Azure, and GCP
+- **Terraform Ecosystem**: Complete suite of Terraform tools including terraform-docs, tflint, tfsec, terrascan, and more
+- **Security Best Practices**: Pre-commit hooks for security scanning and credential management
+- **Developer Experience**: VS Code integration with tasks, settings, and extensions
+- **Performance Optimization**: Caching strategies and optimized volume mounts
 
-A VSCode Dev Container with [tools][tools] to help you build and manage AWS infrastructure with Terraform
+## Prerequisites
 
-| ![screenshot-1](doc/images/screenshot-1.gif) |
-|:--:|
-| *Develop your project in a Docker container* |
+- [Docker](https://www.docker.com/products/docker-desktop/) - Required for running containers
+- [Visual Studio Code](https://code.visualstudio.com/) - The recommended IDE
+- [VS Code Remote Development Extension Pack](https://marketplace.visualstudio.com/items?itemName=ms-vscode-remote.vscode-remote-extensionpack) - Required for Dev Containers
 
-| ![screenshot-2](doc/images/screenshot-2.gif) |
-|:--:|
-| *Increase productivity with well-defined `Make` commands* |
+## Getting Started
 
-| ![screenshot-3](doc/images/screenshot-3.gif) |
-|:--:|
-| *Ensure every team member has all the tools on their correct versions* |
+1. Clone this repository:
+   ```bash
+   git clone <repository-url>
+   ```
 
-| ![screenshot-4](doc/images/screenshot-4.png) |
-|:--:|
-| *Extensions already installed for you* |
+2. Open the folder in VS Code:
+   ```bash
+   code .
+   ```
 
+3. When prompted, click "Reopen in Container" or use the command palette (F1) and select "Remote-Containers: Reopen in Container"
 
-## Table of Contents
+4. Wait for the container to build and initialize (this may take a few minutes the first time)
 
-- [Getting Started](#getting-started)
+## Included Tools
 
-- [Prerequisites](#prerequisites)
+| Tool | Version | Description |
+|------|---------|-------------|
+| Terraform | 1.5.7 | Infrastructure as Code tool |
+| AWS CLI | v2 | Command line interface for AWS |
+| Azure CLI | Latest | Command line interface for Azure |
+| Google Cloud SDK | Latest | Command line interface for GCP |
+| terraform-docs | 0.16.0 | Documentation generator for Terraform modules |
+| tflint | 0.47.0 | Terraform linter |
+| tfsec | 1.28.0 | Security scanner for Terraform code |
+| terrascan | 1.18.3 | Detect compliance and security violations |
+| terragrunt | 0.48.0 | Thin wrapper for Terraform that provides extra tools |
+| infracost | 0.10.28 | Cloud cost estimates for Terraform |
+| checkov | 2.3.360 | Static code analysis tool for IaC |
+| pre-commit | Latest | Framework for managing git pre-commit hooks |
 
+## Authentication
 
-- [Usage](#usage)
+The container includes helper scripts for authenticating with each cloud provider:
 
+### AWS Authentication
 
+```bash
+.devcontainer/scripts/aws-auth.sh [--profile PROFILE] [--region REGION] [--sso]
+```
 
+### Azure Authentication
 
-## Getting Started
+```bash
+.devcontainer/scripts/azure-auth.sh [--subscription SUBSCRIPTION_ID] [--tenant TENANT_ID] [--service-principal] [--client-id CLIENT_ID] [--client-secret CLIENT_SECRET]
+```
+
+### GCP Authentication
 
-1. On a terminal, inside your Terraform project, execute the following on Mac, Linux or [WSL][wsl]:
 ```bash
-curl -sL https://raw.githubusercontent.com/awslabs/aws-terraform-dev-container/main/scripts/init.sh | bash
-````
-2. Open the folder with VSCode
-3. Reopen in Container
+.devcontainer/scripts/gcp-auth.sh [--project PROJECT_ID] [--credentials FILE_PATH]
+```
 
-To reopen in container manually, open the [command pallete](https://code.visualstudio.com/docs/getstarted/userinterface#_command-palette) on VS Code and select `Rebuild and Reopen in Container`
+## VS Code Tasks
 
+The environment includes pre-configured VS Code tasks for common operations:
 
-## Prerequisites
-  A list of things you need, or how to install them.
+- **Terraform: Init** - Initialize a Terraform working directory
+- **Terraform: Plan** - Generate and show an execution plan
+- **Terraform: Apply** - Build or change infrastructure
+- **Terraform: Destroy** - Destroy Terraform-managed infrastructure
+- **Terraform: Validate** - Validate the Terraform files
+- **Terraform: Format** - Rewrite Terraform configuration files to canonical format
+- **TFLint: Run** - Run TFLint for static analysis
+- **TFSec: Run** - Run TFSec for security scanning
+- **Checkov: Run** - Run Checkov for compliance checks
+- **Pre-commit: Run All Hooks** - Run all pre-commit hooks
 
-- [Docker](https://www.docker.com/products/docker-desktop/) - The fastest way to containerize applications
-- [Visual Studio Code](https://code.visualstudio.com/) - Visual Studio Code is a code editor redefined and optimized for building and debugging modern web and cloud applications.
-- [VSCode Remote Development Extension Pack](https://marketplace.visualstudio.com/items?itemName=ms-vscode-remote.vscode-remote-extensionpack) - An extension pack that lets you open any folder in a container, on a remote machine, or in WSL and take advantage of VS Code's full feature set.
+To run a task, press `Ctrl+Shift+P` (or `Cmd+Shift+P` on macOS) and select "Tasks: Run Task", then choose the task you want to run.
 
+## Pre-commit Hooks
 
+The environment includes pre-configured pre-commit hooks for Terraform validation, formatting, and security scanning. To install the hooks:
 
-## Usage
-```bash
-make [tab][tab]
-```
-For example, if you want to explore the most common [terraform][terraform] commands:
 ```bash
-make terraform/[tab]
-apply     clean     destroy   fmt       init      init/     plan      validate  version
+pre-commit install
 ```
 
-To display all available commands:
-```bash
-make help
-```
-For more information about each [Make targets available](Makefile.md).
+## Environment Variables
 
+Environment variables for Terraform and cloud providers can be configured in `.devcontainer/config/terraform.env`. The following variables are available:
 
+### Terraform Configuration
 
+- `TF_PLUGIN_CACHE_DIR` - Directory for caching Terraform plugins
+- `TF_CLI_ARGS_init` - Arguments for `terraform init`
+- `TF_CLI_ARGS_plan` - Arguments for `terraform plan`
+- `TF_CLI_ARGS_apply` - Arguments for `terraform apply`
+- `TF_LOG` - Terraform logging level
 
+### AWS Provider Configuration
 
-## References
-- [Terraform by HashiCorp](https://www.terraform.io) - Terraform is an open-source infrastructure as code software tool that enables you to safely and predictably create, change, and improve infrastructure.
-- [Changelog](CHANGELOG.md) - All notable changes.
-- [Code Of Conduct](CODE_OF_CONDUCT.md) - Amazon Open Source Code of Conduct
-- [Contributing](CONTRIBUTING.md) - Learn how to contribute
-- [License](LICENSE) - MIT No Attribution
-- [GNU Make](https://www.gnu.org/software/make/manual/make.html) - If you are new to make, or are looking for a general introduction.
+- `AWS_PROFILE` - AWS profile to use
+- `AWS_REGION` - AWS region to use
+- `AWS_SDK_LOAD_CONFIG` - Load config from AWS config file
 
+### Azure Provider Configuration
 
-## License
-This project is licensed under the MIT-0 License. See the [LICENSE](LICENSE) file.
+- `ARM_SUBSCRIPTION_ID` - Azure subscription ID
+- `ARM_TENANT_ID` - Azure tenant ID
+- `ARM_CLIENT_ID` - Azure client ID
+- `ARM_CLIENT_SECRET` - Azure client secret
+
+### GCP Provider Configuration
+
+- `GOOGLE_APPLICATION_CREDENTIALS` - Path to GCP service account key file
+- `CLOUDSDK_CORE_PROJECT` - GCP project ID
 
-## Copyright
-Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+## Customization
 
+### Adding Custom Tools
 
-[repo]: https://gitlab.aws.dev/proserve-labs/aws-terraform-dev-container
-[logo]: doc/logo.png
+To add custom tools to the container, modify the `.devcontainer/Dockerfile` and add your installation commands.
+
+### Customizing VS Code Settings
+
+VS Code settings can be customized in `.vscode/settings.json`.
+
+### Customizing Pre-commit Hooks
+
+Pre-commit hooks can be customized in `.pre-commit-config.yaml`.
+
+## Volume Mounts
+
+The container includes the following volume mounts:
+
+- `~/.aws` - AWS credentials and configuration
+- `~/.azure` - Azure credentials and configuration
+- `~/.config/gcloud` - GCP credentials and configuration
+- `~/.ssh` - SSH keys
+- `terraform-cache` - Terraform plugin cache
+
+## Security Considerations
+
+- Credentials are mounted from the host to avoid storing them in the container
+- Pre-commit hooks include security scanning for Terraform code
+- Secret detection is enabled to prevent committing sensitive information
+
+## Troubleshooting
+
+### Common Issues
+
+1. **Docker not running**: Ensure Docker is running on your system
+2. **Permission issues**: Ensure you have the necessary permissions for the mounted volumes
+3. **Authentication failures**: Check your credentials and ensure they are properly configured
+
+### Logs
+
+Container logs can be viewed in VS Code by clicking on the "Remote" indicator in the bottom-left corner and selecting "Show Container Log".
+
+## License
 
-[docker]: https://www.docker.com/products/docker-desktop/
-[vscode-dev-container]: https://code.visualstudio.com/docs/remote/containers
-[terraform]: https://www.terraform.io
-[license]: LICENSE
-[tools]: TOOLS
-[wsl]: https://learn.microsoft.com/en-us/windows/wsl/install
+This project is licensed under the MIT License - see the LICENSE file for details.
diff --git a/USAGE.md b/USAGE.md
