fix: add count condition and replica resource

Author: themaheshyadav

.github/dependabot.yml

@@ -106,3 +106,16 @@ updates:
       - "approvers"
     # Allow up to 3 open pull requests for pip dependencies
     open-pull-requests-limit: 3
+
+  - package-ecosystem: "terraform" # See documentation for possible values
+    directory: "/_examples/replica-db" # Location of package manifests
+    schedule:
+      interval: "weekly"
+    # Add assignees
+    assignees:
+      - "clouddrove-ci"
+    # Add reviewer
+    reviewers:
+      - "approvers"
+    # Allow up to 3 open pull requests for pip dependencies
+    open-pull-requests-limit: 3

.github/workflows/tf-checks.yml

@@ -29,3 +29,7 @@ jobs:
     uses: clouddrove/github-shared-workflows/.github/workflows/tf-checks.yml@master
     with:
       working_directory: './_examples/redis/'
+  tf-checks-replica-db-example:
+    uses: clouddrove/github-shared-workflows/.github/workflows/tf-checks.yml@master
+    with:
+      working_directory: './_examples/replica-db/'

README.yaml

@@ -242,3 +242,42 @@ usage : |-
       ]
     }
   ```
+  ## database replica example
+  ```hcl
+      module "redis" {
+      source                       = "terraform-do-modules/database/digitalocean"
+      version                      = "1.0.0"
+      name                         = "app"
+      environment                  = "test"
+      region                       = "blr1"
+      cluster_engine               = "mysql"
+      cluster_version              = "8"
+      cluster_size                 = "db-s-1vcpu-1gb"
+      cluster_node_count           = 1
+      cluster_private_network_uuid = module.vpc.id
+      mysql_sql_mode               = "ANSI,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION,NO_ZERO_DATE,NO_ZERO_IN_DATE,STRICT_ALL_TABLES,ALLOW_INVALID_DATES"
+      cluster_maintenance = {
+        maintenance_hour = "02:00:00"
+        maintenance_day  = "saturday"
+      }
+      databases = ["testdb", "testdbt"]
+
+      users = [
+        {
+          name              = "test1",
+          mysql_auth_plugin = "mysql_native_password"
+        }
+      ]
+
+      ## database replica
+      replica_enable = true
+
+      create_firewall = false
+      firewall_rules = [
+        {
+          type  = "ip_addr"
+          value = "0.0.0.0"
+        }
+      ]
+    }
+  ```

_examples/mysql/main.tf

@@ -36,11 +36,10 @@ module "mysql" {
     maintenance_hour = "02:00:00"
     maintenance_day  = "saturday"
   }
-  databases = ["testdb"]
-
+  databases = ["testdb", "testdbt"]
   users = [
     {
-      name              = "test",
+      name              = "test1",
       mysql_auth_plugin = "mysql_native_password"
     }
   ]

_examples/replica-db/main.tf

@@ -0,0 +1,58 @@
+provider "digitalocean" {}
+
+locals {
+  name        = "app"
+  environment = "test"
+  region      = "blr1"
+}
+
+##------------------------------------------------
+## VPC module call
+##------------------------------------------------
+module "vpc" {
+  source      = "terraform-do-modules/vpc/digitalocean"
+  version     = "1.0.0"
+  name        = local.name
+  environment = local.environment
+  region      = local.region
+  ip_range    = "10.10.0.0/16"
+}
+
+##------------------------------------------------
+## mysql database cluster module call
+##------------------------------------------------
+module "mysql" {
+  source                       = "../../"
+  name                         = local.name
+  environment                  = local.environment
+  region                       = local.region
+  cluster_engine               = "mysql"
+  cluster_version              = "8"
+  cluster_size                 = "db-s-1vcpu-1gb"
+  cluster_node_count           = 1
+  cluster_private_network_uuid = module.vpc.id
+  mysql_sql_mode               = "ANSI,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION,NO_ZERO_DATE,NO_ZERO_IN_DATE,STRICT_ALL_TABLES,ALLOW_INVALID_DATES"
+  cluster_maintenance = {
+    maintenance_hour = "02:00:00"
+    maintenance_day  = "saturday"
+  }
+  databases = ["testdb", "testdbt"]
+
+  users = [
+    {
+      name              = "test1",
+      mysql_auth_plugin = "mysql_native_password"
+    }
+  ]
+
+  ## database replica
+  replica_enable = true
+
+  create_firewall = true
+  firewall_rules = [
+    {
+      type  = "ip_addr"
+      value = "0.0.0.0"
+    }
+  ]
+}

_examples/replica-db/outputs.tf

@@ -0,0 +1,113 @@
+//# ------------------------------------------------------------------------------
+//# Outputs
+//# ------------------------------------------------------------------------------
+//output "database_cluster_id" {
+//  value       = module.mysql.database_cluster_id
+//  description = "The id of the database cluster"
+//}
+//
+//output "database_cluster_urn" {
+//  value       = module.mysql.database_cluster_urn
+//  description = "The uniform resource name of the database cluster"
+//}
+//
+//output "database_cluster_host" {
+//  value       = module.mysql.database_cluster_host
+//  description = "The hostname of the database cluster"
+//}
+//
+//output "database_cluster_private_host" {
+//  value       = module.mysql.database_cluster_private_host
+//  description = "Same as host, but only accessible from resources within the account and in the same region"
+//}
+//
+//output "database_cluster_port" {
+//  value       = module.mysql.database_cluster_port
+//  description = "Network port that the database cluster is listening on"
+//}
+//
+//output "database_cluster_uri" {
+//  value       = module.mysql.database_cluster_uri
+//  sensitive   = true
+//  description = "The full URI for connecting to the database cluster"
+//}
+//
+//output "database_cluster_database" {
+//  value       = module.mysql.database_cluster_default_database
+//  description = "Name of the cluster's default database"
+//}
+//
+//output "database_cluster_user" {
+//  value       = module.mysql.database_cluster_default_user
+//  description = "Username for the cluster's default user"
+//}
+//
+//output "database_cluster_password" {
+//  value       = module.mysql.database_cluster_default_password
+//  sensitive   = true
+//  description = "Password for the cluster's default user"
+//}
+//
+//output "connection_pool_id" {
+//  value       = module.mysql.connection_pool_id
+//  description = "The ID of the database connection pool"
+//}
+//
+//output "connection_pool_host" {
+//  value       = module.mysql.connection_pool_host
+//  description = "The hostname used to connect to the database connection pool"
+//}
+//
+//output "connection_pool_private_host" {
+//  value       = module.mysql.connection_pool_private_host
+//  description = "Same as pool host, but only accessible from resources within the account and in the same region"
+//}
+//
+//output "connection_pool_port" {
+//  value       = module.mysql.connection_pool_port
+//  description = "Network port that the database connection pool is listening on"
+//}
+//
+//output "connection_pool_uri" {
+//  value       = module.mysql.connection_pool_uri
+//  sensitive   = true
+//  description = "The full URI for connecting to the database connection pool"
+//}
+//
+//output "connection_pool_private_uri" {
+//  value       = module.mysql.connection_pool_private_uri
+//  sensitive   = true
+//  description = "Same as pool uri, but only accessible from resources within the account and in the same region"
+//}
+//
+//output "connection_pool_password" {
+//  value       = module.mysql.connection_pool_password
+//  sensitive   = true
+//  description = "Password for the connection pool's user"
+//}
+//
+//output "db_name" {
+//  value       = module.mysql.db_name
+//  description = "The name for the database"
+//}
+//
+//output "user_role" {
+//  value       = module.mysql.user_role
+//  description = "Role for the database user"
+//}
+//
+//output "user_password" {
+//  value       = module.mysql.user_password
+//  sensitive   = true
+//  description = "Password for the database user"
+//}
+//
+//output "database_firewall_id" {
+//  value       = module.mysql.database_firewall_id
+//  description = "A unique identifier for the firewall rule"
+//}
+//
+//output "database_firewall_rule" {
+//  value       = module.mysql.database_firewall_rule
+//  description = "A map with rule's uuid, type, value and created_at params"
+//}

_examples/replica-db/versions.tf

@@ -0,0 +1,10 @@
+# Terraform version
+terraform {
+  required_version = ">= 1.5.4"
+  required_providers {
+    digitalocean = {
+      source  = "digitalocean/digitalocean"
+      version = ">= 2.29.0"
+    }
+  }
+}

main.tf

@@ -14,6 +14,7 @@ module "labels" {
 #Description :Provides a DigitalOcean database cluster resource.
 ##-----------------------------------------------------------------------------
 resource "digitalocean_database_cluster" "cluster" {
+  count                = var.enabled == true ? 1 : 0
   name                 = format("%s-${var.cluster_engine}", module.labels.id)
   engine               = var.cluster_engine
   version              = var.cluster_version
@@ -24,6 +25,7 @@ resource "digitalocean_database_cluster" "cluster" {
   tags                 = [module.labels.id]
   eviction_policy      = var.redis_eviction_policy
   sql_mode             = var.mysql_sql_mode
+  project_id           = var.project_id
 
   dynamic "maintenance_window" {
     for_each = var.cluster_maintenance != null ? [var.cluster_maintenance] : []
@@ -32,23 +34,32 @@ resource "digitalocean_database_cluster" "cluster" {
       day  = maintenance_window.value.maintenance_day
     }
   }
+  dynamic "backup_restore" {
+    for_each = var.backup_restore != null ? [var.backup_restore] : []
+    content {
+      database_name     = backup_restore.value.database_name
+      backup_created_at = lookup(backup_restore.value, "backup_created_at", null)
+    }
+  }
 }
 
+
 ##-----------------------------------------------------------------------------
 #Description :Provides a DigitalOcean database resource.
 ##-----------------------------------------------------------------------------
 resource "digitalocean_database_db" "database" {
-  for_each   = toset(var.databases)
-  cluster_id = digitalocean_database_cluster.cluster.id
-  name       = each.value
+  depends_on = [digitalocean_database_cluster.cluster]
+  count      = var.enabled == true ? length(var.databases) : 0
+  cluster_id = join("", digitalocean_database_cluster.cluster[*].id)
+  name       = var.databases[count.index]
 }
 
 ##-----------------------------------------------------------------------------
 #Description : Provides a DigitalOcean database user resource.
 ##-----------------------------------------------------------------------------
 resource "digitalocean_database_user" "user" {
-  for_each          = var.users != null ? { for u in var.users : u.name => u } : {}
-  cluster_id        = digitalocean_database_cluster.cluster.id
+  for_each          = var.enabled == true && var.users != null ? { for u in var.users : u.name => u } : {}
+  cluster_id        = join("", digitalocean_database_cluster.cluster[*].id)
   name              = each.value.name
   mysql_auth_plugin = lookup(each.value, "mysql_auth_plugin", null)
 }
@@ -57,8 +68,8 @@ resource "digitalocean_database_user" "user" {
 #Description : Provides a DigitalOcean database connection pool resource.
 ##-----------------------------------------------------------------------------
 resource "digitalocean_database_connection_pool" "connection_pool" {
-  for_each   = var.create_pools ? { for p in var.pools : p.name => p } : {}
-  cluster_id = digitalocean_database_cluster.cluster.id
+  for_each   = var.enabled == true && var.create_pools ? { for p in var.pools : p.name => p } : {}
+  cluster_id = join("", digitalocean_database_cluster.cluster[*].id)
   name       = each.value.name
   mode       = each.value.mode
   size       = each.value.size
@@ -70,8 +81,37 @@ resource "digitalocean_database_connection_pool" "connection_pool" {
 #Description :Provides a DigitalOcean database firewall resource.
 ##-----------------------------------------------------------------------------
 resource "digitalocean_database_firewall" "firewall" {
-  count      = var.create_firewall ? 1 : 0
-  cluster_id = digitalocean_database_cluster.cluster.id
+  count      = var.enabled == true && var.create_firewall ? 1 : 0
+  cluster_id = join("", digitalocean_database_cluster.cluster[*].id)
+  dynamic "rule" {
+    for_each = var.firewall_rules
+    content {
+      type  = rule.value.type
+      value = rule.value.value
+    }
+  }
+  depends_on = [digitalocean_database_cluster.cluster]
+}
+
+##-----------------------------------------------------------------------------
+#Description: Provides a DigitalOcean database replica resource.
+##-----------------------------------------------------------------------------
+resource "digitalocean_database_replica" "replica-example" {
+  count                = var.enabled == true && var.replica_enable ? 1 : 0
+  cluster_id           = join("", digitalocean_database_cluster.cluster[*].id)
+  name                 = format("%s-${var.cluster_engine}-replica", module.labels.id)
+  size                 = var.replica_size
+  region               = var.region
+  tags                 = [module.labels.id]
+  private_network_uuid = var.cluster_private_network_uuid
+}
+
+##-----------------------------------------------------------------------------
+#Description :Provides a DigitalOcean database firewall resource.
+##-----------------------------------------------------------------------------
+resource "digitalocean_database_firewall" "replica-firewall" {
+  count      = var.enabled == true && var.create_firewall && var.replica_enable ? 1 : 0
+  cluster_id = join("", digitalocean_database_cluster.cluster[*].id)
   dynamic "rule" {
     for_each = var.firewall_rules
     content {