fix: removed tf v0.12 support

removed object type variables
added more ci tests
added changelog.md

Author: yoshutch

.github/workflows/ci.yml

@@ -3,7 +3,6 @@ name: CI
 on:
   pull_request:
     branches: [master]
-    types: [opened, reopened, synchronize, edited]
 
 jobs:
   env:
@@ -17,13 +16,19 @@ jobs:
             "env":[
               {
                 "tf_version":"0.13.2",
-                "tf_working_dir":"./examples/ci-13",
+                "tf_working_dir":"./examples/ci-0_13",
                 "aws_key_name":"byu_oit_terraform_dev_key",
                 "aws_secret_name":"byu_oit_terraform_dev_secret"
               },
               {
-                "tf_version":"0.12.26",
-                "tf_working_dir":"./examples/ci-12",
+                "tf_version":"0.14.8",
+                "tf_working_dir":"./examples/ci-0_14",
+                "aws_key_name":"byu_oit_terraform_dev_key",
+                "aws_secret_name":"byu_oit_terraform_dev_secret"
+              },
+              {
+                "tf_version":"1.0.0",
+                "tf_working_dir":"./examples/ci-1",
                 "aws_key_name":"byu_oit_terraform_dev_key",
                 "aws_secret_name":"byu_oit_terraform_dev_secret"
               }
@@ -79,5 +84,20 @@ jobs:
 
       - name: Terraform Plan
         working-directory: ${{ matrix.env.tf_working_dir }}
-        run: terraform plan -input=false
-    # TODO: Post plan back to PR
+        run: terraform plan.tfplan -input=false
+
+      - name: Comment Terraform Plan
+        uses: byu-oit/github-action-tf-plan-comment@v1
+        with:
+          comment-title: Plan for Terraform v-${{ matrix.env.tf_version }}
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          working-directory: ${{ matrix.env.tf_working_dir }}
+          terraform-plan-file: plan.tfplan
+
+      - name: Analyze Terraform Plan
+        uses: byu-oit/github-action-tf-plan-analyzer@v2
+        with:
+          divvycloud-username: ${{ secrets.DIVVYCLOUD_USERNAME }}
+          divvycloud-password: ${{ secrets.DIVVYCLOUD_PASSWORD }}
+          working-directory: ${{ matrix.env.tf_working_dir }}
+          terraform-plan-file: plan.tfplan

README.md

@@ -24,28 +24,46 @@ Note: If you do not specify `use_codedeploy = true`, the above process will not
 Also Note: CodePipeline and CodeDeploy cannot be used together to deploy a Lambda. If you are using CodePipeline, you cannot specify `use_codedeploy = true`. CodeDeploy works fine with other pipelining tools (e.g. GitHub Actions).
 
 ## Usage
+For a Zip file lambda
 ```hcl
 module "lambda_api" {
-  source   = "github.com/byu-oit/terraform-aws-lambda-api?ref=v2.0.0"
-  app_name = "my-lambda-dev"
-  env      = "dev"
-  zip_file = {
-    filename = "./src/lambda.zip"
-    handler  = "index.handler"
-    runtime  = "nodejs12.x"
+  source       = "github.com/byu-oit/terraform-aws-lambda-api?ref=v2.0.0"
+  app_name     = "my-lambda-codedeploy-dev"
+  env          = "dev"
+  zip_filename = "./src/lambda.zip"
+  zip_handler  = "index.handler"
+  zip_runtime  = "nodejs12.x"
+
+  hosted_zone                   = module.acs.route53_zone
+  https_certificate_arn         = module.acs.certificate.arn
+  vpc_id                        = module.acs.vpc.id
+  public_subnet_ids             = module.acs.public_subnet_ids
+  role_permissions_boundary_arn = module.acs.role_permissions_boundary.arn
+  codedeploy_service_role_arn   = module.acs.power_builder_role.arn
+  codedeploy_test_listener_port = 4443
+  codedeploy_lifecycle_hooks = {
+    BeforeAllowTraffic = aws_lambda_function.test_lambda.function_name
+    AfterAllowTraffic  = null
   }
+}
+```
+
+For a docker image lambda:
+```hcl
+module "lambda_api" {
+  source                        = "github.com/byu-oit/terraform-aws-lambda-api?ref=v2.0.0"
+  app_name                      = "my-docker-lambda"
+  image_uri                     = "my-image-from-my-ecr:latest"
   hosted_zone                   = module.acs.route53_zone
   https_certificate_arn         = module.acs.certificate.arn
   vpc_id                        = module.acs.vpc.id
   public_subnet_ids             = module.acs.public_subnet_ids
   role_permissions_boundary_arn = module.acs.role_permissions_boundary.arn
-  codedeploy_config = {
-    service_role_arn   = module.acs.power_builder_role.arn
-    test_listener_port = 4443
-    lifecycle_hooks = {
-      BeforeAllowTraffic = aws_lambda_function.test_lambda.function_name
-      AfterAllowTraffic  = null
-    }
+  codedeploy_service_role_arn   = module.acs.power_builder_role.arn
+  codedeploy_test_listener_port = 4443
+  codedeploy_lifecycle_hooks = {
+    BeforeAllowTraffic = aws_lambda_function.test_lambda.function_name
+    AfterAllowTraffic  = null
   }
 }
 ```
@@ -68,21 +86,26 @@ module "lambda_api" {
 * DNS A-Record
 
 ## Requirements
-* Terraform version 0.12.21 or greater
-* AWS provider version 2.56 or greater
+* Terraform version 0.13.2 or greater
+* AWS provider version 3.0 or greater
 
 ## Inputs
 | Name | Type  | Description | Default |
 | --- | --- | --- | --- |
 | app_name | string | application name (include the env aka. 'my-api-dev') | |
-| zip_file | [object](#zip_file_config) | configuration for a zip file lambda (conflicts with `image_uri`) | null |
 | image_uri | string | ECR Image URI containing the function's deployment package (conflicts with `zip_file`)| null |
+| zip_filename | string | File that contains your compiled or zipped source code. |
+| zip_handler | string | Lambda event handler |
+| zip_runtime | string | Lambda runtime |
 | lambda_vpc_config | [object](#lambda_vpc_config) | Lambda VPC object. Used if lambda requires to run inside a VPC | null |
 | environment_variables | map(string) | A map that defines environment variables for the Lambda function. | |
 | domain_url | string | Custom domain URL for the API, defaults to <app_name>.<hosted_zone_domain> | null | |
 | hosted_zone | [object](#hosted_zone) | Hosted Zone object to redirect to ALB. (Can pass in the aws_hosted_zone object). A and AAAA records created in this hosted zone. | |
 | https_certificate_arn | string | ARN of the HTTPS certificate of the hosted zone/domain. | |
-| codedeploy_config | [object](#codedeploy_config) | Configuration for putting CodeDeploy on the lambda | null |
+| codedeploy_service_role_arn | string | ARN of the IAM Role for the CodeDeploy to use to initiate new deployments. (usually the PowerBuilder Role) |
+| codedeploy_lifecycle_hooks | [object](#codedeploy_lifecycle_hooks) | Define Lambda Functions for CodeDeploy lifecycle event hooks. Or set this variable to null to not have any lifecycle hooks invoked. Defaults to null | null
+| codedeploy_appspec_filename | string | Filename (including path) to use when outputing appspec json. | `appspec.json` in the current working directory (i.e. where you ran `terraform apply`) |
+| codedeploy_test_listener_port | number | The port for a codedeploy test listener. If provided CodeDeploy will use this port for test traffic on the new replacement set during the blue-green deployment process before shifting production traffic to the replacement set. Defaults to null | null
 | vpc_id | string | VPC ID to deploy ALB and Lambda (If specified). | |
 | public_subnet_ids | list(string) | List of subnet IDs for the ALB. | |
 | tags | map(string) | A map of AWS Tags to attach to each resource created | {} |
@@ -93,26 +116,13 @@ module "lambda_api" {
 | memory_size | number | Size of the memory of the lambda. CPU will scale along with it | 128 (same as terraform default) |
 | xray_enabled | bool | Whether or not the X-Ray daemon should be created with the Lambda API. | false |
 
-#### zip_file_config
-This configuration is used for when you are including the zipped up code for the lambda instead of using the `image_uri`
-* `filename` - (string) File that contains your compiled or zipped source code
-* `handler` - (string) Lambda event handler
-* `runtime` - (string) Lambda runtime
-
 #### lambda_vpc_config
 
 This variable is used when the lambda needs to be run from within a VPC. 
 
 * **`subnet_ids`** - List of subnet IDs for the Lambda service. 
 * **`security_group_ids`** - List of extra security group IDs to attach to the lambda.
 
-#### codedeploy_config
-If this configuration is included then this module will add the CodeDeploy App and Group required to deploy new versions of the Lambda through CodeDeploy, also allowing for the use of the LifeCycle hooks. 
-* `service_role_arn` - (string) ARN of the IAM Role for the CodeDeploy to use to initiate new deployments (usually the PowerBuilder Role)
-* `lifecycle_hooks` - ([object](#codedeploy_lifecycle_hooks)) | Define Lambda Functions for CodeDeploy lifecycle event hooks. Or set this variable to null to not have any lifecycle hooks invoked
-* `appspec_filename` - (string) Filename (including path) to use when outputing appspec json (defaults to `appspec.json` in the current working directory)
-* `test_listener_port` - (number) The port for a codedeploy test listener. If provided CodeDeploy will use this port for test traffic on the new replacement set during the blue-green deployment process before shifting production traffic to the replacement set
-
 #### codedeploy_lifecycle_hooks
 
 This variable is used when generating the [appspec.json](#appspec) file. This will define what Lambda Functions to invoke 

changelog.md

@@ -0,0 +1,11 @@
+# Changelog
+
+## v2.0.0
+2/24/2022 - Major breaking changes from v1.x:
+- dropped support for terraform v0.12
+- renamed `lambda_zip_file` to `zip_filename`
+- renamed `handler` to `zip_handler`
+- renamed `runtime` to `zip_runtime`
+- renamed `appspec_filename` to `codedeploy_appspec_filename`
+- removed `use_codedeploy` - just include the codedeploy variables to enable codedeploy
+- added `domain_url` variable to enable a custom API URL

examples/ci-13/ci.tf renamed to examples/ci-0_13/ci.tf

@@ -12,13 +12,11 @@ module "acs" {
 }
 
 module "lambda_api" {
-  source   = "../../"
-  app_name = "my-lambda"
-  zip_file = {
-    filename = "./lambda.zip"
-    handler  = "index.handler"
-    runtime  = "nodejs12.x"
-  }
+  source                        = "../../"
+  app_name                      = "my-lambda"
+  zip_filename                  = "./lambda.zip"
+  zip_handler                   = "index.handler"
+  zip_runtime                   = "nodejs12.x"
   hosted_zone                   = module.acs.route53_zone
   https_certificate_arn         = module.acs.certificate.arn
   vpc_id                        = module.acs.vpc.id

examples/ci-12/ci.tf renamed to examples/ci-0_14/ci.tf

@@ -1,24 +1,22 @@
 terraform {
-  required_version = "0.12.26"
+  required_version = "0.14.8"
 }
 
 provider "aws" {
-  version = "~> 2.56"
+  version = "~> 3.0"
   region  = "us-west-2"
 }
 
 module "acs" {
   source = "github.com/byu-oit/terraform-aws-acs-info?ref=v3.4.0"
 }
 
-module "lambda_zip_api" {
-  source   = "../../"
-  app_name = "my-lambda"
-  zip_file = {
-    filename = "./lambda.zip"
-    handler  = "index.handler"
-    runtime  = "nodejs12.x"
-  }
+module "lambda_api" {
+  source                        = "../../"
+  app_name                      = "my-lambda"
+  zip_filename                  = "./lambda.zip"
+  zip_handler                   = "index.handler"
+  zip_runtime                   = "nodejs12.x"
   hosted_zone                   = module.acs.route53_zone
   https_certificate_arn         = module.acs.certificate.arn
   vpc_id                        = module.acs.vpc.id

examples/ci-1/ci.tf

@@ -0,0 +1,53 @@
+terraform {
+  required_version = "1.0.0"
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 3.73.0"
+    }
+  }
+}
+
+provider "aws" {
+  region = "us-west-2"
+}
+
+module "acs" {
+  source = "github.com/byu-oit/terraform-aws-acs-info?ref=v3.4.0"
+}
+
+module "lambda_api" {
+  source                        = "../../"
+  app_name                      = "my-lambda"
+  zip_filename                  = "./lambda.zip"
+  zip_handler                   = "index.handler"
+  zip_runtime                   = "nodejs12.x"
+  hosted_zone                   = module.acs.route53_zone
+  https_certificate_arn         = module.acs.certificate.arn
+  vpc_id                        = module.acs.vpc.id
+  public_subnet_ids             = module.acs.public_subnet_ids
+  role_permissions_boundary_arn = module.acs.role_permissions_boundary.arn
+  xray_enabled                  = true
+
+  lambda_vpc_config = {
+    subnet_ids         = module.acs.private_subnet_ids
+    security_group_ids = []
+  }
+}
+
+module "lambda_docker_api" {
+  source                        = "../../"
+  app_name                      = "my-docker-lambda"
+  image_uri                     = "crccheck/hello-world:latest"
+  hosted_zone                   = module.acs.route53_zone
+  https_certificate_arn         = module.acs.certificate.arn
+  vpc_id                        = module.acs.vpc.id
+  public_subnet_ids             = module.acs.public_subnet_ids
+  role_permissions_boundary_arn = module.acs.role_permissions_boundary.arn
+  xray_enabled                  = true
+
+  lambda_vpc_config = {
+    subnet_ids         = module.acs.private_subnet_ids
+    security_group_ids = []
+  }
+}

examples/ci-12/lambda.zip

@@ -1,7 +1,3 @@
-terraform {
-  required_version = "0.13.4"
-}
-
 provider "aws" {
   version = "~> 3.0"
   region  = "us-west-2"
@@ -12,9 +8,10 @@ module "acs" {
 }
 
 module "lambda_api" {
-  source                        = "../../"
+  #  source                        = "../../"
+  source                        = "github.com/byu-oit/terraform-aws-lambda-api?ref=v2.0.0"
   app_name                      = "my-docker-lambda"
-  image                         = "my-image-from-my-ecr:latest"
+  image_uri                     = "my-image-from-my-ecr:latest"
   hosted_zone                   = module.acs.route53_zone
   https_certificate_arn         = module.acs.certificate.arn
   vpc_id                        = module.acs.vpc.id
@@ -28,38 +25,6 @@ module "lambda_api" {
   }
 }
 
-output "lambda" {
-  value = module.lambda_api.lambda
-}
-
-output "lambda_security_group" {
-  value = module.lambda_api.lambda_security_group
-}
-
-output "lambda_live_alias" {
-  value = module.lambda_api.lambda_live_alias
-}
-
-output "codedeploy_deployment_group" {
-  value = module.lambda_api.codedeploy_deployment_group
-}
-
-output "codedeploy_appspec_json_file" {
-  value = module.lambda_api.codedeploy_appspec_json_file
-}
-
-output "alb" {
-  value = module.lambda_api.alb
-}
-
-output "alb_security_group" {
-  value = module.lambda_api.alb_security_group
-}
-
-output "dns_record" {
-  value = module.lambda_api.dns_record
-}
-
-output "cloudwatch_log_group" {
-  value = module.lambda_api.cloudwatch_log_group
+output "url" {
+  value = module.lambda_api.dns_record.fqdn
 }

examples/ci-13/lambda.zip

@@ -8,14 +8,12 @@ module "acs" {
 }
 
 module "lambda_api" {
-  source = "../../"
-  #  source                        = "github.com/byu-oit/terraform-aws-lambda-api?ref=v1.3.0"
-  app_name = "my-lambda-dev"
-  zip_file = {
-    filename = "./src/lambda.zip"
-    handler  = "index.handler"
-    runtime  = "nodejs12.x"
-  }
+  #  source = "../../"
+  source                        = "github.com/byu-oit/terraform-aws-lambda-api?ref=v2.0.0"
+  app_name                      = "my-lambda-dev"
+  zip_filename                  = "./src/lambda.zip"
+  zip_handler                   = "index.handler"
+  zip_runtime                   = "nodejs12.x"
   hosted_zone                   = module.acs.route53_zone
   https_certificate_arn         = module.acs.certificate.arn
   vpc_id                        = module.acs.vpc.id