Refactor Terraform configuration for improved readability and optimization, including updates to backend settings, variable descriptions, and resource definitions.

Author: karimzakzouk

Terraform/2-backend.tf

@@ -1,9 +1,9 @@
 terraform {
   backend "s3" {
-    bucket = "solar-system-terraform-state-123456"
-    key    = "o-tel-demo/terraform.tfstate"
-    region = "us-east-1"
+    bucket         = "solar-system-terraform-state-123456"
+    key            = "o-tel-demo/terraform.tfstate"
+    region         = "us-east-1"
     dynamodb_table = "solar-system-terraform-locks"
-    encrypt = true
+    encrypt        = true
   }
 }

Terraform/3-main.tf

@@ -9,19 +9,20 @@ module "vpc" {
 }
 
 module "eks" {
-  source = "./modules/eks"
-  cluster_name = var.cluster_name
-  cluster_version = var.cluster_version
-  vpc_id = module.vpc.vpc_id
+  source             = "./modules/eks"
+  cluster_name       = var.cluster_name
+  cluster_version    = var.cluster_version
+  vpc_id             = module.vpc.vpc_id
   cluster_subnet_ids = concat(module.vpc.private_subnet_ids, module.vpc.public_subnet_ids)
-  node_subnet_ids = module.vpc.private_subnet_ids
-  node_groups = var.node_groups
+  node_subnet_ids    = module.vpc.private_subnet_ids
+  node_groups        = var.node_groups
+  depends_on         = [module.vpc]
 }
 resource "aws_eks_addon" "metrics_server" {
-  cluster_name             = module.eks.cluster_name
-  depends_on = [module.eks]
-  addon_name               = "metrics-server"
-  addon_version            = null
+  cluster_name                = module.eks.cluster_name
+  addon_name                  = "metrics-server"
+  addon_version               = null
   resolve_conflicts_on_create = "OVERWRITE"
   resolve_conflicts_on_update = "OVERWRITE"
+  depends_on                  = [module.eks]
 }

Terraform/4-variables.tf

@@ -1,7 +1,7 @@
 variable "vpc_cidr" {
-  description   = "CIDR Block for VPC"
-  type          = string
-  default       = "10.0.0.0/16"
+  description = "CIDR Block for VPC"
+  type        = string
+  default     = "10.0.0.0/16"
 }
 
 variable "availability_zones" {
@@ -11,29 +11,29 @@ variable "availability_zones" {
 }
 
 variable "private_subnet_cidrs" {
-  description   = "CIDR blocks for private subnets"
-  type          = list(string)
-  default       = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
+  description = "CIDR blocks for private subnets"
+  type        = list(string)
+  default     = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
 }
 
 
 variable "public_subnet_cidrs" {
-  description   = "CIDR blocks for public subnets"
-  type          = list(string)
-  default       = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
+  description = "CIDR blocks for public subnets"
+  type        = list(string)
+  default     = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
 }
 
 
 variable "cluster_name" {
-  description   = "Name of the EKS cluster"
-  type          = string
-  default       = "otel-cluster"
+  description = "Name of the EKS cluster"
+  type        = string
+  default     = "otel-cluster"
 }
 
 variable "cluster_version" {
-  description   = "Kubernetes version"
-  type          = string
-  default       = "1.30"
+  description = "Kubernetes version"
+  type        = string
+  default     = "1.30"
 }
 
 
@@ -45,7 +45,7 @@ variable "node_groups" {
     scaling_config = object({
       desired_size = number
       max_size     = number
-      min_size     = number 
+      min_size     = number
     })
   }))
 

Terraform/5-outputs.tf

@@ -1,16 +1,16 @@
 output "vpc_id" {
   description = "VPC ID"
-  value = module.vpc.vpc_id
+  value       = module.vpc.vpc_id
 }
 
 output "cluster_endpoint" {
   description = "EKS cluster endpoint"
-  value = module.eks.cluster_endpoint
+  value       = module.eks.cluster_endpoint
 }
 
 output "cluster_name" {
   description = "EKS cluster name"
-  value = module.eks.cluster_name
+  value       = module.eks.cluster_name
 }
 
 output "app_namespace" {

Terraform/modules/eks/main.tf

@@ -9,7 +9,7 @@ resource "aws_eks_cluster" "main" {
   }
 
   vpc_config {
-    subnet_ids = var.cluster_subnet_ids  # Changed from var.subnet_ids
+    subnet_ids = var.cluster_subnet_ids # Changed from var.subnet_ids
   }
 
   depends_on = [
@@ -95,7 +95,7 @@ resource "aws_eks_node_group" "main" {
   cluster_name    = aws_eks_cluster.main.name
   node_group_name = each.key
   node_role_arn   = aws_iam_role.node.arn
-  subnet_ids = var.node_subnet_ids  # Changed from var.subnet_ids
+  subnet_ids      = var.node_subnet_ids # Changed from var.subnet_ids
   scaling_config {
     desired_size = each.value.scaling_config.desired_size
     max_size     = each.value.scaling_config.max_size
@@ -120,7 +120,7 @@ resource "aws_iam_instance_profile" "karpenter_node" {
 # Karpenter Controller IAM Role
 resource "aws_iam_role" "karpenter_controller" {
   name = "KarpenterControllerRole-${var.cluster_name}"
-  
+
   assume_role_policy = jsonencode({
     Version = "2012-10-17"
     Statement = [
@@ -182,8 +182,8 @@ resource "aws_iam_role_policy" "karpenter_controller" {
         Resource = "*"
       },
       {
-        Effect = "Allow"
-        Action = "iam:CreateServiceLinkedRole"
+        Effect   = "Allow"
+        Action   = "iam:CreateServiceLinkedRole"
         Resource = "*"
         Condition = {
           StringEquals = {

Terraform/modules/eks/outputs.tf

@@ -1,24 +1,24 @@
 output "cluster_endpoint" {
   description = "EKS cluster endpoint"
-  value = aws_eks_cluster.main.endpoint
+  value       = aws_eks_cluster.main.endpoint
 }
 
 output "cluster_name" {
   description = "EKS cluster name"
-  value = aws_eks_cluster.main.name
+  value       = aws_eks_cluster.main.name
 }
 
 output "cluster_certificate_authority_data" {
   description = "EKS cluster certificate authority data"
-  value = aws_eks_cluster.main.certificate_authority[0].data
+  value       = aws_eks_cluster.main.certificate_authority[0].data
 }
 
 output "karpenter_controller_role_arn" {
   description = "Karpenter controller IAM role ARN"
-  value = aws_iam_role.karpenter_controller.arn
+  value       = aws_iam_role.karpenter_controller.arn
 }
 
 output "karpenter_interruption_queue_name" {
   description = "Karpenter interruption SQS queue name"
-  value = aws_sqs_queue.karpenter_interruption.name
+  value       = aws_sqs_queue.karpenter_interruption.name
 }

Terraform/modules/eks/variables.tf

@@ -1,11 +1,11 @@
 variable "cluster_name" {
-  description   = "Name of the EKS cluster"
-  type          = string
+  description = "Name of the EKS cluster"
+  type        = string
 }
 
 variable "cluster_version" {
-  description   = "Kubernetes version"
-  type          = string
+  description = "Kubernetes version"
+  type        = string
 }
 
 variable "vpc_id" {
@@ -23,14 +23,14 @@ variable "node_subnet_ids" {
   type        = list(string)
 }
 variable "node_groups" {
-  description   = "EKS node groups configuration"
-  type          = map(object({
+  description = "EKS node groups configuration"
+  type = map(object({
     instance_types = list(string)
     capacity_type  = string
     scaling_config = object({
       desired_size = number
       max_size     = number
-      min_size     = number 
+      min_size     = number
     })
   }))
 }

Terraform/modules/vpc/main.tf

@@ -1,40 +1,40 @@
 resource "aws_vpc" "main" {
-  cidr_block            = var.vpc_cidr  # "10.0.0.0/16"
-  enable_dns_hostnames  = true
-  enable_dns_support    = true
+  cidr_block           = var.vpc_cidr # "10.0.0.0/16"
+  enable_dns_hostnames = true
+  enable_dns_support   = true
 
   tags = {
-    Name                                                =   "${var.cluster_name}-vpc"
-    "kubernetes.io/cluster/${var.cluster_name}"         =   "shared"
+    Name                                        = "${var.cluster_name}-vpc"
+    "kubernetes.io/cluster/${var.cluster_name}" = "shared"
   }
 }
 
 resource "aws_subnet" "private" {
-  count                 = length(var.private_subnet_cidrs)
-  vpc_id                = aws_vpc.main.id
-  cidr_block            = var.private_subnet_cidrs[count.index]     # "10.0.1.0/24"
-  availability_zone     = var.availability_zones[count.index]
+  count             = length(var.private_subnet_cidrs)
+  vpc_id            = aws_vpc.main.id
+  cidr_block        = var.private_subnet_cidrs[count.index] # "10.0.1.0/24"
+  availability_zone = var.availability_zones[count.index]
 
   tags = {
-    Name                                                =   "${var.cluster_name}-private-${count.index + 1}"
-    "kubernetes.io/cluster/${var.cluster_name}"         =   "shared"
-    "kubernetes.io/role/internal-elb"                   =   "1"
-    "karpenter.sh/discovery" = var.cluster_name
+    Name                                        = "${var.cluster_name}-private-${count.index + 1}"
+    "kubernetes.io/cluster/${var.cluster_name}" = "shared"
+    "kubernetes.io/role/internal-elb"           = "1"
+    "karpenter.sh/discovery"                    = var.cluster_name
   }
 }
 
 resource "aws_subnet" "public" {
-  count                     = length(var.public_subnet_cidrs)
-  vpc_id                    = aws_vpc.main.id
-  cidr_block                = var.public_subnet_cidrs[count.index]     # "10.0.1.0/24"
-  availability_zone         = var.availability_zones[count.index]
-  map_public_ip_on_launch   = true
+  count                   = length(var.public_subnet_cidrs)
+  vpc_id                  = aws_vpc.main.id
+  cidr_block              = var.public_subnet_cidrs[count.index] # "10.0.1.0/24"
+  availability_zone       = var.availability_zones[count.index]
+  map_public_ip_on_launch = true
 
   tags = {
-    Name                                                =   "${var.cluster_name}-public-${count.index + 1}"
-    "kubernetes.io/cluster/${var.cluster_name}"         =   "owned"
-    "kubernetes.io/role/elb"                            =   "1"
-    "karpenter.sh/discovery" = var.cluster_name
+    Name                                        = "${var.cluster_name}-public-${count.index + 1}"
+    "kubernetes.io/cluster/${var.cluster_name}" = "owned"
+    "kubernetes.io/role/elb"                    = "1"
+    "karpenter.sh/discovery"                    = var.cluster_name
   }
 }
 
@@ -44,7 +44,7 @@ resource "aws_internet_gateway" "main" {
   vpc_id = aws_vpc.main.id
 
   tags = {
-    Name =  "${var.cluster_name}-igw"
+    Name = "${var.cluster_name}-igw"
   }
 }
 
@@ -63,22 +63,25 @@ resource "aws_route_table" "public" {
 }
 
 resource "aws_route_table_association" "public" {
-  count             = length(var.public_subnet_cidrs) 
-  subnet_id         = aws_subnet.public[count.index].id
-  route_table_id    = aws_route_table.public[count.index].id
+  count          = length(var.public_subnet_cidrs)
+  subnet_id      = aws_subnet.public[count.index].id
+  route_table_id = aws_route_table.public[count.index].id
 }
 
 
 resource "aws_eip" "nat" {
-  count     = length(var.public_subnet_cidrs)
-  domain    = "vpc"
+  count  = 1
+  domain = "vpc"
+  tags = {
+    Name = "${var.cluster_name}-eip-nat"
+  }
 }
 
 resource "aws_nat_gateway" "main" {
-  count             = length(var.public_subnet_cidrs)
-  allocation_id     = aws_eip.nat[count.index].id
-  subnet_id         = aws_subnet.public[count.index].id
-  depends_on    = [
+  count         = 1
+  allocation_id = aws_eip.nat[0].id
+  subnet_id     = aws_subnet.public[0].id
+  depends_on = [
     aws_internet_gateway.main,
     aws_subnet.public,
     aws_eip.nat
@@ -90,12 +93,12 @@ resource "aws_nat_gateway" "main" {
 }
 
 resource "aws_route_table" "private" {
-  count             = length(var.private_subnet_cidrs) 
-  vpc_id            = aws_vpc.main.id
+  count  = length(var.private_subnet_cidrs)
+  vpc_id = aws_vpc.main.id
 
   route {
-    cidr_block = "0.0.0.0/0"
-    nat_gateway_id =  aws_nat_gateway.main[count.index].id
+    cidr_block     = "0.0.0.0/0"
+    nat_gateway_id = aws_nat_gateway.main[0].id
   }
 
   tags = {
@@ -104,8 +107,8 @@ resource "aws_route_table" "private" {
 }
 
 resource "aws_route_table_association" "private" {
-  count             = length(var.private_subnet_cidrs) 
-  subnet_id         = aws_subnet.private[count.index].id
-  route_table_id    = aws_route_table.private[count.index].id
+  count          = length(var.private_subnet_cidrs)
+  subnet_id      = aws_subnet.private[count.index].id
+  route_table_id = aws_route_table.private[count.index].id
 }
 

Terraform/modules/vpc/outputs.tf

@@ -1,14 +1,14 @@
 output "vpc_id" {
   description = "VPC ID"
-  value = aws_vpc.main.id
+  value       = aws_vpc.main.id
 }
 
 output "private_subnet_ids" {
   description = "Private subnets IDS"
-  value = aws_subnet.private[*].id
+  value       = aws_subnet.private[*].id
 }
 
 output "public_subnet_ids" {
   description = "public subnets IDS"
-  value = aws_subnet.public[*].id
+  value       = aws_subnet.public[*].id
 }