soat-tech-challenge
diff --git a/‎.github/workflows/pull-request.yml‎
Lines changed: 0 additions & 2 deletions b/‎.github/workflows/pull-request.yml‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎.terraform.lock.hcl‎
Lines changed: 31 additions & 31 deletions b/‎.terraform.lock.hcl‎
Lines changed: 31 additions & 31 deletions
diff --git a/‎datasources.tf‎
Lines changed: 7 additions & 17 deletions b/‎datasources.tf‎
Lines changed: 7 additions & 17 deletions
diff --git a/‎dynamodb.tf‎
Lines changed: 49 additions & 0 deletions b/‎dynamodb.tf‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎dynamodb_outputs.tf‎
Lines changed: 1 addition & 0 deletions b/‎dynamodb_outputs.tf‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎main.tf‎
Lines changed: 0 additions & 38 deletions b/‎main.tf‎
Lines changed: 0 additions & 38 deletions
diff --git a/‎network.tf‎
Lines changed: 24 additions & 10 deletions b/‎network.tf‎
Lines changed: 24 additions & 10 deletions
diff --git a/‎outputs.tf‎
Lines changed: 0 additions & 4 deletions b/‎outputs.tf‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎providers.tf‎
Lines changed: 25 additions & 1 deletion b/‎providers.tf‎
Lines changed: 25 additions & 1 deletion
diff --git a/‎rds.tf‎
Lines changed: 74 additions & 0 deletions b/‎rds.tf‎
Lines changed: 74 additions & 0 deletions
@@ -4,8 +4,6 @@ on:
   pull_request:
     branches:
       - main
-    paths-ignore:
-      - "**/README.md"
   workflow_dispatch:
 
 jobs:
 
@@ -1,19 +1,9 @@
-data "aws_vpc" "vpc" {
-  filter {
-    name   = "tag:Name"
-    values = [var.vpc_name]
-  }
-}
+# AWS Academy Vocareum AWS Learner Lab 
+# data "aws_iam_role" "lab_role" {
+#   name = "LabRole"
+# }
 
-data "aws_subnets" "private_subnets" {
-  filter {
-    name   = "tag:Name"
-    values = ["soat-tech-challenge-subnet-public*"]
-  }
+data "tfe_outputs" "network" {
+  organization = "soat-tech-challenge"
+  workspace    = "network-staging"
 }
-
-
-# data "tfe_outputs" "network" {
-#   organization = "soat-tech-challenge"
-#   workspace    = "network-staging"
-# }
@@ -0,0 +1,49 @@
+resource "aws_dynamodb_table" "identification_svc_clients_table" {
+  name         = "clients"
+  billing_mode = "PROVISIONED"
+
+  hash_key = "id" // Partition key
+
+  read_capacity  = "5"
+  write_capacity = "5"
+
+  attribute {
+    name = "id"
+    type = "S" // Auto-generated UUIDs
+  }
+
+  tags = {
+    Name : "SOAT-TC DynamoDB Identification Service Clients Table"
+  }
+}
+
+module "identification_svc_clients_table_autoscaling" {
+  source     = "snowplow-devops/dynamodb-autoscaling/aws"
+  version    = "~> 0.2.1"
+  table_name = aws_dynamodb_table.identification_svc_clients_table.name
+}
+
+resource "aws_dynamodb_table" "production_svc_status_table" {
+  name         = "status"
+  billing_mode = "PROVISIONED"
+
+  hash_key = "id" // Partition key
+
+  read_capacity  = "5"
+  write_capacity = "5"
+
+  attribute {
+    name = "id"
+    type = "S" // Auto-generated UUIDs
+  }
+
+  tags = {
+    Name : "SOAT-TC DynamoDB Production Service Status Table"
+  }
+}
+
+module "production_svc_status_table_autoscaling" {
+  source     = "snowplow-devops/dynamodb-autoscaling/aws"
+  version    = "~> 0.2.1"
+  table_name = aws_dynamodb_table.production_svc_status_table.name
+}
@@ -0,0 +1 @@
+
@@ -1,20 +1,34 @@
-resource "aws_security_group" "this" {
-  name   = "soat-tc-rds-sg"
-  vpc_id = data.aws_vpc.vpc.id
+resource "aws_security_group" "order_svc_rds_db_sg" {
+  name   = "SOAT-TC RDS Order Service DB Security Group"
+  vpc_id = data.tfe_outputs.network.values.vpc_vpc.id
 
   ingress {
-    from_port   = var.db_port
-    to_port     = var.db_port
+    from_port   = var.order_svc_db_port
+    to_port     = var.order_svc_db_port
     protocol    = "tcp"
     cidr_blocks = ["0.0.0.0/0"]
   }
 
-  tags = {
-    Name = "Backend DB Security Group",
+}
+
+resource "aws_security_group" "payment_svc_rds_db_sg" {
+  name   = "SOAT-TC RDS Payment Service DB Security Group"
+  vpc_id = data.tfe_outputs.network.values.vpc_vpc.id
+
+  ingress {
+    from_port   = var.payment_svc_db_port
+    to_port     = var.payment_svc_db_port
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
   }
 }
 
-resource "aws_db_subnet_group" "this" {
-  name       = "soat-tc-rds-subnet-group"
-  subnet_ids = data.aws_subnets.private_subnets.ids
+resource "aws_db_subnet_group" "main" {
+  name       = "soat-tc-rds-public-subnets-subnet-group"
+  subnet_ids = data.tfe_outputs.network.values.vpc_public_subnets[*].id
+
+  tags = {
+    Name : "SOAT-TC RDS Public Subnets Subnet Group"
+  }
 }
+
@@ -1,14 +1,38 @@
+terraform {
+  required_version = ">= 0.12.26"
+
+  cloud {
+    organization = "soat-tech-challenge"
+
+    workspaces {
+      name = "database-staging"
+    }
+  }
+
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "5.34.0"
+    }
+
+    tfe = {
+      source  = "hashicorp/tfe"
+      version = "~> 0.51.1"
+    }
+  }
+}
+
 provider "aws" {
   region = var.aws_region
 
   access_key = var.aws_access_key
   secret_key = var.aws_secret_key
+  token      = var.aws_session_token
 
   default_tags {
     tags = {
       Organization = "soat-tech-challenge"
       Workspace    = "database-staging"
-      Exemplo      = "apresentacao"
     }
   }
 }
@@ -0,0 +1,74 @@
+resource "aws_db_parameter_group" "main" {
+  name        = "soat-tc-psql-pg"
+  description = "SOAT Tech Challenge RDS Parameter Group for PostgreSQL"
+  family      = "postgres15"
+
+  parameter {
+    name  = "log_connections"
+    value = "1"
+  }
+
+  tags = {
+    Name : "SOAT-TC RDS PostgreSQL Parameter Group"
+  }
+}
+
+resource "aws_db_instance" "order_svc_db" {
+  identifier = "soat-tc-rds-order-svc-db"
+  engine     = "postgres"
+
+  db_name = var.order_svc_db_name
+
+  allocated_storage = 20
+  storage_type      = "gp2"
+  engine_version    = "15.4"
+  instance_class    = "db.t3.micro"
+
+  username = var.order_svc_db_username
+  password = var.order_svc_db_password
+  port     = var.order_svc_db_port
+
+  skip_final_snapshot = true
+  publicly_accessible = true # For presentation purposes
+  deletion_protection = false
+  ca_cert_identifier  = "rds-ca-rsa2048-g1"
+  apply_immediately   = true
+
+  parameter_group_name = aws_db_parameter_group.main.name
+  db_subnet_group_name = aws_db_subnet_group.main.name
+
+  vpc_security_group_ids = [aws_security_group.order_svc_rds_db_sg.id]
+
+  # monitoring_interval = 15
+  # monitoring_role_arn = data.aws_iam_role.lab_role.arn
+}
+
+resource "aws_db_instance" "payment_svc_db" {
+  identifier = "soat-tc-rds-payment-svc-db"
+  engine     = "postgres"
+
+  db_name = var.payment_svc_db_name
+
+  allocated_storage = 20
+  storage_type      = "gp2"
+  engine_version    = "15.4"
+  instance_class    = "db.t3.micro"
+
+  username = var.payment_svc_db_username
+  password = var.payment_svc_db_password
+  port     = var.payment_svc_db_port
+
+  skip_final_snapshot = true
+  publicly_accessible = true # For presentation purposes
+  deletion_protection = false
+  ca_cert_identifier  = "rds-ca-rsa2048-g1"
+  apply_immediately   = true
+
+  parameter_group_name = aws_db_parameter_group.main.name
+  db_subnet_group_name = aws_db_subnet_group.main.name
+
+  vpc_security_group_ids = [aws_security_group.payment_svc_rds_db_sg.id]
+
+  # monitoring_interval = 15
+  # monitoring_role_arn = data.aws_iam_role.lab_role.arn
+}