Merge pull request #14 from sourcefuse/feature/vpn

mayank0202 · web-flow · commit c6a0a237c91e · 2024-02-05T17:57:47.000+05:30
added module usage guide and contributing file for client VPN
diff --git a/.github/workflows/update-docs.yml b/.github/workflows/update-docs.yml
@@ -18,7 +18,19 @@ jobs:
         with:
           source_file: "README.md"
           destination_repo: "sourcefuse/arc-docs"
-          destination_folder: "docs/arc-iac-docs/modules/terraform-aws-refarch-vpn"
+          destination_folder: "docs/arc-iac-docs/modules/terraform-aws-arc-vpn"
           user_email: "github-actions@github.com"
           user_name: ${{ github.actor }}
           commit_message: ${{ github.event.head_commit.message }}
+      - name: Pushes Module Usage Guide
+        uses: dmnemec/copy_file_to_another_repo_action@main
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          API_TOKEN_GITHUB: ${{ secrets.ARC_DOCS_API_TOKEN_GITHUB }}
+        with:
+          source_file: 'docs/module-usage-guide/README.md'
+          destination_repo: 'sourcefuse/arc-docs'
+          destination_folder: 'docs/arc-iac-docs/modules/terraform-aws-arc-vpn/docs/module-usage-guide'
+          user_email: 'github-actions@github.com'
+          user_name: ${{ github.actor }}
+          commit_message: ${{ github.event.head_commit.message }}
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -0,0 +1,135 @@
+# Contributing to AWS ARC Client VPN
+Thank you for considering contributing to AWS ARC CLient VPN! We appreciate your time and effort.
+To ensure a smooth collaboration, please take a moment to review the following guidelines.
+
+## How to Contribute
+1. Fork the repository to your own GitHub account.
+2. Clone the repository to your local machine.
+   ```bash
+   git clone https://github.com/<your_organization>/<your_terraform_module>.git
+   ```
+3. Create a new branch for your feature / bugfix.
+   ```bash
+   git checkout -b feature/branch_name
+   ```
+4. Make your changes and commit them.
+   ```bash
+   git commit -m "Your descriptive commit message"
+
+5. Run pre-commit checks
+   ```bash
+   pre-commit run --all-files
+
+6. Push to your forked repository.
+   ```bash
+   git push origin feature/branch_name
+   ```
+7. Open a pull request in the original repository with a clear title and description.
+   If your pull request addresses an issue, please reference the issue number in the pull request description.
+
+## Git commits
+while Contributing or doing git commit please specify the breaking change in your commit message whether its major,minor or patch
+
+For Example
+
+```sh
+git commit -m "your commit message #major"
+```
+By specifying this , it will bump the version and if you don't specify this in your commit message then by default it will consider patch and will bump that accordingly
+
+# Terraform Code Collaboration Guidelines
+
+## File Naming Conventions
+
+1. **Variables File (variables.tf):**
+    - All variable names should be in snake_case.
+    - Each variable declaration must contain:
+        - Description: A brief explanation of the variable's purpose.
+        - Type: The data type of the variable.
+
+    Example:
+    ```hcl
+    variable "example_variable" {
+      description = "This is an example variable."
+      type        = string
+    }
+    ```
+
+2. **Outputs File (outputs.tf):**
+    - All output names should be in snake_case.
+    - Each output declaration must contain:
+        - Description: A brief explanation of the output's purpose.
+        - Value: The value that will be exposed as the output.
+
+    Example:
+    ```hcl
+    output "example_output" {
+      description = "This is an example output."
+      value       = module.example_module.example_attribute
+    }
+    ```
+
+## Resource and Module Naming
+
+1. **Terraform Resources/Modules:**
+    - Resource and module names should be in snake_case.
+    - Choose descriptive names that reflect the purpose of the resource or module.
+
+    Example:
+    ```hcl
+    resource "aws_instance" "web_server" {
+      // ...
+    }
+
+    module "clinet_vpn" {
+      // ...
+    }
+    ```
+
+## General Guidelines
+
+1. **Consistent Formatting:**
+    - Follow consistent code formatting to enhance readability.
+    - Use indentation and line breaks appropriately.
+
+2. **Comments:**
+    - Add comments to explain complex logic, decisions, or any non-trivial code.
+    - Keep comments up-to-date with the code.
+
+3. **Module Documentation:**
+    - Include a README.md file within each module directory, explaining its purpose, inputs, and outputs.
+    - Use inline documentation within the code for complex modules.
+
+4. **Avoid Hardcoding:**
+    - Minimize hardcoded values; prefer using variables and references for increased flexibility.
+
+5. **Sensitive Information:**
+    - Do not hardcode sensitive information (e.g., passwords, API keys). Use appropriate methods for securing sensitive data.
+
+6. **Error Handling:**
+    - Implement proper error handling and consider the impact of potential failures.
+
+## Version Control
+
+1. **Commit Messages:**
+    - Use descriptive and concise commit messages that explain the purpose of the changes.
+
+2. **Branching:**
+    - Follow a branching strategy (e.g., feature branches) for better collaboration.
+
+## Code Style
+Please follow the Terraform language conventions and formatting guidelines. Consider using an editor with Terraform support or a linter to ensure adherence to the style.
+
+## Testing
+!!! This section is a work-in-progress, as we are starting to adopt testing using Terratest. !!!
+
+Before submitting a pull request, ensure that your changes pass all tests. If applicable, add new tests to cover your changes.
+
+## Documentation
+Keep the module documentation up-to-date. If you add new features or change existing functionality, update the [README](README.md) and any relevant documentation files.
+
+## Security and Compliance Checks
+GitHub Actions are in place to perform security and compliance checks. Please make sure your changes pass these checks before submitting a pull request.
+
+## Licensing
+By contributing, you agree that your contributions will be licensed under the project's [LICENSE](LICENSE).
diff --git a/docs/module-usage-guide/README.md b/docs/module-usage-guide/README.md
@@ -0,0 +1,129 @@
+# Terraform AWS ARC VPN Module Usage Guide
+
+## Introduction
+
+### Purpose of the Document
+
+This document provides guidelines and instructions for users looking to implement Terraform ARC module for managing a Client VPN.
+
+### Module Overview
+
+The [terraform-aws-arc-vpn](https://github.com/sourcefuse/terraform-aws-arc-vpn) The VPN setup allows users to securely connect to the AWS VPC from anywhere, using the created client VPN.
+
+### Prerequisites
+
+Before using this module, ensure you have the following:
+
+- AWS credentials configured.
+- Terraform installed.
+- A working knowledge of AWS Client VPN
+
+## Getting Started
+
+### Module Source
+
+To use the module in your Terraform configuration, include the following source block:
+
+```hcl
+module "client_vpn" {
+  source  = "sourcefuse/arc-vpn/aws"
+  version = "0.0.8"
+  # insert the required variables here
+}
+```
+
+### Integration with Existing Terraform Configurations
+
+Integrate the module with your existing Terraform mono repo configuration, follow the steps below:
+
+1. Create a new folder in `terraform/` named `client_vpn`.
+2. Create the required files, see the [examples](https://github.com/sourcefuse/terraform-aws-arc-vpn/tree/main/examples/simple) to base off of.
+3. Configure with your backend
+  - Create the environment backend configuration file: `config.<environment>.hcl`
+    - **region**: Where the backend resides
+    - **key**: `<working_directory>/terraform.tfstate`
+    - **bucket**: Bucket name where the terraform state will reside
+    - **dynamodb_table**: Lock table so there are not duplicate tfplans in the mix
+    - **encrypt**: Encrypt all traffic to and from the backend
+
+### Required AWS Permissions
+
+Ensure that the AWS credentials used to execute Terraform have the necessary permissions to create Client VPN.
+
+## Module Configuration
+
+### Input Variables
+
+For a list of input variables, see the README [Inputs](https://github.com/sourcefuse/terraform-aws-arc-vpn?tab=readme-ov-file#inputs) section.
+
+### Output Values
+
+For a list of outputs, see the README [Outputs](https://github.com/sourcefuse/terraform-aws-arc-vpn?tab=readme-ov-file#outputs) section.
+
+## Module Usage
+
+### Basic Usage
+
+For basic usage, see the [example](https://github.com/sourcefuse/terraform-aws-arc-vpn/tree/main/example) folder.
+
+This example will create:
+
+Self-Signed Certificate Authority (CA) Creation: It creates a self-signed CA certificate using the cloudposse/terraform-aws-ssm-tls-self-signed-cert module. The certificate is stored in AWS SSM (Systems Manager).
+
+Self-Signed Root Certificate Creation: It creates a self-signed root certificate using the cloudposse/terraform-aws-ssm-tls-self-signed-cert module. This certificate is signed by the previously created CA certificate.
+
+VPN Setup: It uses the sourcefuse/arc-vpn/aws module to create a VPN setup. This includes:
+
+Setting up certificate-based authentication using the self-signed root certificate.
+
+Authorizing all groups to access the VPN.
+
+Specifying the private subnets where the VPN endpoints will be created.
+
+Specifying the target network CIDR block, which is the VPC's CIDR block.
+
+Creating a self-signed server certificate.
+
+Setting up the client VPN with a specified client CIDR block, VPN name, and VPN gateway name.
+
+The VPN setup allows users to securely connect to the AWS VPC from anywhere, using the created client VPN. The self-signed certificates are used to authenticate the users.
+### Tips and Recommendations
+
+The module focuses on setting up AWS Client VPN. Adjust the configuration parameters as needed for your specific use case.
+
+## Troubleshooting
+
+### Reporting Issues
+
+If you encounter a bug or issue, please report it on the [GitHub repository](https://github.com/sourcefuse/terraform-aws-arc-vpn/issues).
+
+## Security Considerations
+
+### AWS VPC
+
+Understand the security considerations related to Client VPN when using this module.
+
+### Best Practices for Client VPN
+
+Follow best practices to ensure secure Client VPN.
+[Client VPN Security on AWS](https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/security-best-practices.html)
+
+## Contributing and Community Support
+
+### Contributing Guidelines
+
+Contribute to the module by following the guidelines outlined in the [CONTRIBUTING.md](https://github.com/sourcefuse/terraform-aws-arc-vpn/blob/main/CONTRIBUTING.md) file.
+
+### Reporting Bugs and Issues
+
+If you find a bug or issue, report it on the [GitHub repository](https://github.com/sourcefuse/terraform-aws-arc-vpn/issues).
+
+## License
+
+### License Information
+
+This module is licensed under the Apache 2.0 license. Refer to the [LICENSE](https://github.com/sourcefuse/terraform-aws-arc-vpn/blob/main/LICENSE) file for more details.
+
+### Open Source Contribution
+
+Contribute to open source by using and enhancing this module. Your contributions are welcome!
