{"id":19129384,"url":"https://github.com/launchbynttdata/tf-aws-module_primitive-virtual_node","last_synced_at":"2026-05-17T02:02:31.002Z","repository":{"id":246252246,"uuid":"795229284","full_name":"launchbynttdata/tf-aws-module_primitive-virtual_node","owner":"launchbynttdata","description":null,"archived":false,"fork":false,"pushed_at":"2024-10-24T19:09:01.000Z","size":92,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-01-03T10:46:05.572Z","etag":null,"topics":["aws","primitive","terraform"],"latest_commit_sha":null,"homepage":null,"language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/launchbynttdata.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-05-02T20:56:14.000Z","updated_at":"2024-10-24T19:08:45.000Z","dependencies_parsed_at":null,"dependency_job_id":"85f39d5e-cc85-427a-a206-074e4cec6e1b","html_url":"https://github.com/launchbynttdata/tf-aws-module_primitive-virtual_node","commit_stats":null,"previous_names":["launchbynttdata/tf-aws-module_primitive-virtual_node"],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-aws-module_primitive-virtual_node","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-aws-module_primitive-virtual_node/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-aws-module_primitive-virtual_node/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-aws-module_primitive-virtual_node/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/launchbynttdata","download_url":"https://codeload.github.com/launchbynttdata/tf-aws-module_primitive-virtual_node/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240199257,"owners_count":19763827,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","primitive","terraform"],"created_at":"2024-11-09T06:07:20.494Z","updated_at":"2026-05-17T02:02:30.962Z","avatar_url":"https://github.com/launchbynttdata.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# tf-aws-module_primitive-appmesh_virtual_node\n\n[![License](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)\n[![License: CC BY-NC-ND 4.0](https://img.shields.io/badge/License-CC_BY--NC--ND_4.0-lightgrey.svg)](https://creativecommons.org/licenses/by-nc-nd/4.0/)\n\n## Overview\n\nThis terraform module creates a Virtual Node in a Service Mesh provided as input.\n## Usage\nA sample variable file `example.tfvars` is available in the root directory which can be used to test this module. User needs to follow the below steps to execute this module\n1. Update the `example.tfvars` to manually enter values for all fields marked within `\u003c\u003e` to make the variable file usable\n2. Create a file `provider.tf` with the below contents\n   ```\n    provider \"aws\" {\n      profile = \"\u003cprofile_name\u003e\"\n      region  = \"\u003cregion_name\u003e\"\n    }\n    ```\n   If using `SSO`, make sure you are logged in `aws sso login --profile \u003cprofile_name\u003e`\n3. Make sure terraform binary is installed on your local. Use command `type terraform` to find the installation location. If you are using `asdf`, you can run `asfd install` and it will install the correct terraform version for you. `.tool-version` contains all the dependencies.\n4. Run the `terraform` to provision infrastructure on AWS\n    ```\n    # Initialize\n    terraform init\n    # Plan\n    terraform plan -var-file example.tfvars\n    # Apply (this is create the actual infrastructure)\n    terraform apply -var-file example.tfvars -auto-approve\n   ```\n## Known Issues and Facts\n\n1. The health checks in the listener checks the health of the underlying service and logs it, but doesn't evict the ECS task in case of failures.\n\n## Pre-Commit hooks\n\n[.pre-commit-config.yaml](.pre-commit-config.yaml) file defines certain `pre-commit` hooks that are relevant to terraform, golang and common linting tasks. There are no custom hooks added.\n\n`commitlint` hook enforces commit message in certain format. The commit contains the following structural elements, to communicate intent to the consumers of your commit messages:\n\n- **fix**: a commit of the type `fix` patches a bug in your codebase (this correlates with PATCH in Semantic Versioning).\n- **feat**: a commit of the type `feat` introduces a new feature to the codebase (this correlates with MINOR in Semantic Versioning).\n- **BREAKING CHANGE**: a commit that has a footer `BREAKING CHANGE:`, or appends a `!` after the type/scope, introduces a breaking API change (correlating with MAJOR in Semantic Versioning). A BREAKING CHANGE can be part of commits of any type.\nfooters other than BREAKING CHANGE: \u003cdescription\u003e may be provided and follow a convention similar to git trailer format.\n- **build**: a commit of the type `build` adds changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm)\n- **chore**: a commit of the type `chore` adds changes that don't modify src or test files\n- **ci**: a commit of the type `ci` adds changes to our CI configuration files and scripts (example scopes: Travis, Circle, BrowserStack, SauceLabs)\n- **docs**: a commit of the type `docs` adds documentation only changes\n- **perf**: a commit of the type `perf` adds code change that improves performance\n- **refactor**: a commit of the type `refactor` adds code change that neither fixes a bug nor adds a feature\n- **revert**: a commit of the type `revert` reverts a previous commit\n- **style**: a commit of the type `style` adds code changes that do not affect the meaning of the code (white-space, formatting, missing semi-colons, etc)\n- **test**: a commit of the type `test` adds missing tests or correcting existing tests\n\nBase configuration used for this project is [commitlint-config-conventional (based on the Angular convention)](https://github.com/conventional-changelog/commitlint/tree/master/@commitlint/config-conventional#type-enum)\n\nIf you are a developer using vscode, [this](https://marketplace.visualstudio.com/items?itemName=joshbolduc.commitlint) plugin may be helpful.\n\n`detect-secrets-hook` prevents new secrets from being introduced into the baseline. TODO: INSERT DOC LINK ABOUT HOOKS\n\nIn order for `pre-commit` hooks to work properly\n\n- You need to have the pre-commit package manager installed. [Here](https://pre-commit.com/#install) are the installation instructions.\n- `pre-commit` would install all the hooks when commit message is added by default except for `commitlint` hook. `commitlint` hook would need to be installed manually using the command below\n\n```\npre-commit install --hook-type commit-msg\n```\n\n## To test the resource group module locally\n\n1. For development/enhancements to this module locally, you'll need to install all of its components. This is controlled by the `configure` target in the project's [`Makefile`](./Makefile). Before you can run `configure`, familiarize yourself with the variables in the `Makefile` and ensure they're pointing to the right places.\n\n```\nmake configure\n```\n\nThis adds in several files and directories that are ignored by `git`. They expose many new Make targets.\n\n2. The first target you care about is `env`. This is the common interface for setting up environment variables. The values of the environment variables will be used to authenticate with cloud provider from local development workstation.\n\n`make configure` command will bring down `aws_env.sh` file on local workstation. Developer would need to modify this file, replace the environment variable values with relevant values.\n\nThese environment variables are used by `terratest` integration suit.\n\nThen run this make target to set the environment variables on developer workstation.\n\n```\nmake env\n```\n\n3. The first target you care about is `check`.\n\n**Pre-requisites**\nBefore running this target it is important to ensure that, developer has created files mentioned below on local workstation under root directory of git repository that contains code for primitives/segments. Note that these files are `aws` specific. If primitive/segment under development uses any other cloud provider than AWS, this section may not be relevant.\n\n- A file named `provider.tf` with contents below\n\n```\nprovider \"aws\" {\n  profile = \"\u003cprofile_name\u003e\"\n  region  = \"\u003cregion_name\u003e\"\n}\n```\n\n- A file named `terraform.tfvars` which contains key value pair of variables used.\n\nNote that since these files are added in `gitignore` they would not be checked in into primitive/segment's git repo.\n\nAfter creating these files, for running tests associated with the primitive/segment, run\n\n```\nmake check\n```\n\nIf `make check` target is successful, developer is good to commit the code to primitive/segment's git repo.\n\n`make check` target\n\n- runs `terraform commands` to `lint`,`validate` and `plan` terraform code.\n- runs `conftests`. `conftests` make sure `policy` checks are successful.\n- runs `terratest`. This is integration test suit.\n- runs `opa` tests\n\n# Know Issues\nCurrently, the `encrypt at transit` is not supported in terraform. There is an open issue for this logged with Hashicorp - https://github.com/hashicorp/terraform-provider-aws/pull/26987\n\n\u003c!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK --\u003e\n## Requirements\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"requirement_terraform\"\u003e\u003c/a\u003e [terraform](#requirement\\_terraform) | ~\u003e 1.0 |\n| \u003ca name=\"requirement_aws\"\u003e\u003c/a\u003e [aws](#requirement\\_aws) | ~\u003e 5.0 |\n\n## Providers\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"provider_aws\"\u003e\u003c/a\u003e [aws](#provider\\_aws) | 5.73.0 |\n\n## Modules\n\nNo modules.\n\n## Resources\n\n| Name | Type |\n|------|------|\n| [aws_appmesh_virtual_node.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/appmesh_virtual_node) | resource |\n\n## Inputs\n\n| Name | Description | Type | Default | Required |\n|------|-------------|------|---------|:--------:|\n| \u003ca name=\"input_name\"\u003e\u003c/a\u003e [name](#input\\_name) | Name of the Virtual Node | `string` | n/a | yes |\n| \u003ca name=\"input_app_mesh_id\"\u003e\u003c/a\u003e [app\\_mesh\\_id](#input\\_app\\_mesh\\_id) | ID of the App Mesh to use | `string` | n/a | yes |\n| \u003ca name=\"input_tls_enforce\"\u003e\u003c/a\u003e [tls\\_enforce](#input\\_tls\\_enforce) | Whether to enforce TLS on the backends | `bool` | `false` | no |\n| \u003ca name=\"input_tls_mode\"\u003e\u003c/a\u003e [tls\\_mode](#input\\_tls\\_mode) | Mode of TLS. Default is `STRICT`. Allowed values are DISABLED, STRICT and PERMISSIVE. This is required when\u003cbr\u003e    `tls_enforce=true` | `string` | `\"STRICT\"` | no |\n| \u003ca name=\"input_acm_certificate_arn\"\u003e\u003c/a\u003e [acm\\_certificate\\_arn](#input\\_acm\\_certificate\\_arn) | ARN of the private certificate to enforce TLS configuration on the Virtual Node | `string` | n/a | yes |\n| \u003ca name=\"input_certificate_authority_arns\"\u003e\u003c/a\u003e [certificate\\_authority\\_arns](#input\\_certificate\\_authority\\_arns) | List of ARNs of private CAs to validate the private certificates | `list(string)` | `[]` | no |\n| \u003ca name=\"input_namespace_name\"\u003e\u003c/a\u003e [namespace\\_name](#input\\_namespace\\_name) | Name of the CloudMap Namespace to use for Service Discovery | `string` | `\"\"` | no |\n| \u003ca name=\"input_service_name\"\u003e\u003c/a\u003e [service\\_name](#input\\_service\\_name) | CloudMap Service Name to use for this Virtual Node service Discovery | `string` | `\"\"` | no |\n| \u003ca name=\"input_dns_hostname\"\u003e\u003c/a\u003e [dns\\_hostname](#input\\_dns\\_hostname) | DNS hostname for the Virtual Node to point at. Conflicts with Service Discovery | `string` | `\"\"` | no |\n| \u003ca name=\"input_ports\"\u003e\u003c/a\u003e [ports](#input\\_ports) | Application ports | `list(number)` | `[]` | no |\n| \u003ca name=\"input_protocol\"\u003e\u003c/a\u003e [protocol](#input\\_protocol) | Protocol used for port mapping. Valid values are http, http2, tcp and grpc. Currently this same protocol will be used for all listeners | `string` | `\"http\"` | no |\n| \u003ca name=\"input_health_check_config\"\u003e\u003c/a\u003e [health\\_check\\_config](#input\\_health\\_check\\_config) | n/a | \u003cpre\u003eobject({\u003cbr\u003e    healthy_threshold   = number\u003cbr\u003e    interval_millis     = number\u003cbr\u003e    timeout_millis      = number\u003cbr\u003e    unhealthy_threshold = number\u003cbr\u003e  })\u003c/pre\u003e | \u003cpre\u003e{\u003cbr\u003e  \"healthy_threshold\": 2,\u003cbr\u003e  \"interval_millis\": 50000,\u003cbr\u003e  \"timeout_millis\": 50000,\u003cbr\u003e  \"unhealthy_threshold\": 3\u003cbr\u003e}\u003c/pre\u003e | no |\n| \u003ca name=\"input_health_check_path\"\u003e\u003c/a\u003e [health\\_check\\_path](#input\\_health\\_check\\_path) | Destination path for the health check request | `string` | `\"\"` | no |\n| \u003ca name=\"input_idle_duration\"\u003e\u003c/a\u003e [idle\\_duration](#input\\_idle\\_duration) | Idle duration for all the listeners | \u003cpre\u003eobject({\u003cbr\u003e    unit  = string\u003cbr\u003e    value = number\u003cbr\u003e  })\u003c/pre\u003e | `null` | no |\n| \u003ca name=\"input_per_request_timeout\"\u003e\u003c/a\u003e [per\\_request\\_timeout](#input\\_per\\_request\\_timeout) | Per Request timeout for all the listeners | \u003cpre\u003eobject({\u003cbr\u003e    unit  = string\u003cbr\u003e    value = number\u003cbr\u003e  })\u003c/pre\u003e | `null` | no |\n| \u003ca name=\"input_tags\"\u003e\u003c/a\u003e [tags](#input\\_tags) | A map of custom tags to be attached to this resource | `map(string)` | `{}` | no |\n\n## Outputs\n\n| Name | Description |\n|------|-------------|\n| \u003ca name=\"output_id\"\u003e\u003c/a\u003e [id](#output\\_id) | ID of the Virtual Node. |\n| \u003ca name=\"output_arn\"\u003e\u003c/a\u003e [arn](#output\\_arn) | ARN of the Virtual Node |\n| \u003ca name=\"output_name\"\u003e\u003c/a\u003e [name](#output\\_name) | Name of the Virtual Node |\n| \u003ca name=\"output_spec\"\u003e\u003c/a\u003e [spec](#output\\_spec) | Node Spec |\n\u003c!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK --\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flaunchbynttdata%2Ftf-aws-module_primitive-virtual_node","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flaunchbynttdata%2Ftf-aws-module_primitive-virtual_node","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flaunchbynttdata%2Ftf-aws-module_primitive-virtual_node/lists"}