add the s3 endpoint resource

Author: christopher-comet

modules/comet_vpc/main.tf

@@ -38,5 +38,13 @@ module "vpc" {
   public_subnet_tags  = var.eks_enabled ? { "kubernetes.io/role/elb" = 1 } : null
   private_subnet_tags = var.eks_enabled ? { "kubernetes.io/role/internal-elb" = 1 } : null
 
+  tags = local.tags
+}
+
+resource "aws_vpc_endpoint" "s3" {
+  vpc_id = module.vpc.vpc_id
+  service_name = "com.amazonaws.${var.region}.s3"
+  vpc_endpoint_type = "Gateway"
+  route_table_ids   = module.vpc.private_route_table_ids
   tags = local.tags
 }

modules/comet_vpc/variables.tf

@@ -11,4 +11,9 @@ variable "eks_enabled" {
 variable "single_nat_gateway" {
   description = "Controls whether single NAT gateway used for all public subnets"
   type        = bool
+}
+
+variable "region" {
+  description = "AWS region to provision resources in"
+  type        = string
 }