Beautify (#3)

sblack4 · web-flow · commit 664aa2bb83e4 · 2020-02-07T13:44:36.000-05:00
* bump precommit versions * tf docs updated * end of file pre-commit fixer * use latest tf version * fix backend * move setup to bin * add initial setup instructions to readme * ignore terraform custom dirs * add makefile * add new project script * update initial instructions * added pre-commit action * fix #1 by adding gh action badge * terraform docs account readme
diff --git a/.github/workflows/pre-commit-check.yml b/.github/workflows/pre-commit-check.yml
@@ -0,0 +1,22 @@
+name: pre-commit-check
+on:
+  push:
+    branches:
+      - master
+  pull_request:
+
+jobs:
+  build:
+    runs-on: macOS-latest
+    steps:
+    - uses: actions/checkout@v1
+
+    - name: Install prerequisites
+      run: |
+        brew install tfenv tflint terraform-docs pre-commit
+        pre-commit install
+        tfenv install
+
+    - name: pre-commit run all
+      run: |
+        pre-commit run -a
diff --git a/.gitignore b/.gitignore
@@ -1,5 +1,6 @@
 # Local .terraform directories
 **/.terraform/*
+terraform.d
 
 # .tfstate files
 *.tfstate
@@ -26,4 +27,4 @@ override.tf.json
 # !example_override.tf
 
 # Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan
-# example: *tfplan*
+# example: *tfplan*
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -1,7 +1,7 @@
 ---
 repos:
 - repo: git://github.com/antonbabenko/pre-commit-terraform
-  rev: v1.20.0
+  rev: v1.24.0
   hooks:
     - id: terraform_fmt
     - id: terraform_docs
diff --git a/.terraform-version b/.terraform-version
@@ -1 +1 @@
-0.12.17
+0.12.20
diff --git a/Makefile b/Makefile
@@ -0,0 +1,45 @@
+SHELL := /bin/bash
+TF_WORKSPACE := $(shell terraform workspace show)
+WORKSPACE ?= $(TF_WORKSPACE)
+NEW= := $(NEW)
+FOLDER_NAME := $(shell pwd | xargs basename)
+
+.PHONY: init list apply destroy new
+ALL: apply
+
+setup:
+	@echo setting up AWS environment
+	bin/setup.sh
+
+clean:
+	@echo WARNING - removing local terraform dirs
+	rm -rf .terraform
+
+init:
+	@echo sourcing environmental variables
+	terraform init -backend-config backend.auto.tfvars -backend-config "key=$(FOLDER_NAME).tfstate"
+
+list:
+	@echo listing terraform workspaces:
+	terraform workspace list
+
+plan: init
+	@echo planning changes to the $(WORKSPACE) workspace
+	terraform workspace select $(WORKSPACE)
+	terraform plan -var-file $(WORKSPACE).tfvars
+
+apply: init
+	@echo applying changes to the $(WORKSPACE) workspace
+	terraform workspace select $(WORKSPACE)
+	terraform apply -var-file $(WORKSPACE).tfvars
+
+destroy: init
+	@echo applying changes to the $(WORKSPACE) workspace
+	terraform workspace select $(WORKSPACE)
+	terraform destroy -var-file $(WORKSPACE).tfvars
+
+new: init
+	@echo "create a new terraform workspace by running 'make NEW=my-new-name new'"
+	$(shell [ -z $(NEW) ] && echo 'please define the NEW env var'; exit 1;)
+	terraform workspace new $(NEW)
+	echo "env = \"$(NEW)\"" >> $(NEW).tfvars
diff --git a/README.md b/README.md
@@ -1,3 +1,22 @@
 # sample-aws-project
+[![GH Action Status](https://github.com/rhythmictech/sample-aws-project/workflows/pre-commit-check/badge.svg)](https://github.com/rhythmictech/sample-aws-project/actions)
+
 
 A sample AWS project managed by Terraform
+
+## Initial Setup
+
+There is a handy setup script at `bin/setup.sh` which will create a
+[terraform s3 backend](https://www.terraform.io/docs/backends/types/s3.html)
+with locking via DynamoDB and add it's resources to your remote state.
+
+To all the DevOps engineers out there with bosses to impress it's easy to do just follow these steps:
+1. Install the prerequisites
+    - `git`
+    - `terraform` (We use [tfenv](https://github.com/tfutils/tfenv) to manage `terraform` versions)
+    - `pre-commit`
+    - `GNUMake`
+1. [provide authentication for the aws provider](https://www.terraform.io/docs/providers/aws/index.html#authentication)
+1. Clone the repo: `git clone https://github.com/rhythmictech/sample-aws-project.git terraform-aws-rhythmictech`
+1. Update the values for the backend in `account/backend.auto.tfvars`
+1. Run the setup with `make setup`
diff --git a/account/README.md b/account/README.md
@@ -1,14 +1,29 @@
 # Account Settings
 
 <!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Providers
+
+| Name | Version |
+|------|---------|
+| errorcheck | n/a |
+
 ## Inputs
 
 | Name | Description | Type | Default | Required |
-|------|-------------|:----:|:-----:|:-----:|
+|------|-------------|------|---------|:-----:|
+| bucket | Bucket that tfstate is stored in | `string` | n/a | yes |
+| dynamodb\_table | DynamoDB table for locking/state management | `string` | n/a | yes |
+| env | Environment being deployed to | `string` | n/a | yes |
+| iam\_master\_account | n/a | `string` | n/a | yes |
+| iam\_role\_prefix | n/a | `string` | n/a | yes |
+| key | Key that tfstate is stored in | `string` | n/a | yes |
+| namespace | Project name | `string` | n/a | yes |
+| owner | Owner of this infrastructure | `string` | n/a | yes |
+| region | Region resources are being deployed to | `string` | n/a | yes |
+| tags | n/a | `map(string)` | `{}` | no |
 
 ## Outputs
 
-| Name | Description |
-|------|-------------|
+No output.
 
 <!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
diff --git a/account/backend.auto.tfvars b/account/backend.auto.tfvars
@@ -1,4 +1,4 @@
-tfstate_bucket         = "012345678912-us-east-1-tf-state"
-tfstate_key            = "account.tfstate"
-tfstate_dynamodb_table = "tf-locktable"
-region                 = "us-east-1"
+bucket         = "012345678912-us-east-1-tf-state"
+key            = "account.tfstate"
+dynamodb_table = "tf-locktable"
+region         = "us-east-1"
diff --git a/account/setup/main.tf b/account/setup/main.tf
@@ -4,9 +4,8 @@ provider "aws" {
 
 module "backend" {
   source = "git::ssh://git@github.com/rhythmictech/terraform-aws-backend?ref=v1.2.0"
-  bucket = var.tfstate_bucket
-  table  = var.tfstate_dynamodb_table
+  bucket = var.bucket
+  table  = var.dynamodb_table
   region = var.region
   tags   = var.tags
 }
-
diff --git a/account/setup/variables.tf b/account/setup/variables.tf
@@ -15,20 +15,17 @@ variable "tags" {
   type        = map(string)
 }
 
-variable "tfstate_bucket" {
+variable "bucket" {
   description = "Bucket that tfstate is stored in"
   type        = string
 }
 
-variable "tfstate_dynamodb_table" {
+variable "dynamodb_table" {
   description = "DynamoDB table for locking/state management"
   type        = string
 }
 
-variable "tfstate_key" {
+variable "key" {
   description = "Key that tfstate is stored in"
   type        = string
 }
-
-
-
diff --git a/bin/new-project.sh b/bin/new-project.sh
@@ -0,0 +1,124 @@
+#!/usr/bin/env bash -e
+
+#
+# this script is used for bootstraping a new project in your AWS account
+#
+
+new_folder=$1
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"
+
+# authoritative backend file
+backend_file="account/backend.auto.tfvars"
+
+# remote state variables
+tfstate_bucket=""
+region="us-east-1"
+dynamodb_table="tf-locktable"
+
+
+function usage() {
+    cat <<EOF
+Usage: bin/new-project.sh FOLDER_NAME
+
+Creates new folder with common files for another cloud component defined in terraform.
+
+EOF
+}
+
+function check_for_errors() {
+    if [ -z $new_folder ]; then
+        echo "ERROR: no new folder specified"
+        usage
+        exit 1
+    fi
+    if [ -d $new_folder ]; then
+        echo "ERROR: $new_folder already exits"
+        usage
+        exit 1
+    fi
+}
+
+function get_backend_variables() {
+    echo "Getting backend variables from $backend_file"
+    while read line; do
+        key=$(echo $line | sed -E 's/([a-zAZ_]*)([ =]*)(.*)/\1/')
+        value=$(echo $line | sed -E 's/([a-zAZ_]*)([ =]*)(.*)/\3/')
+        case $key in
+            bucket)
+                tfstate_bucket=$value
+                ;;
+            region)
+                region=$value
+                ;;
+            dynamodb_table)
+                dynamodb_table=$value
+                ;;
+            *)
+                ;;
+        esac
+
+    done <$backend_file
+}
+
+function create_new_folder() {
+    echo "creating new folder, $new_folder"
+    mkdir $new_folder
+
+    cd $new_folder
+
+    echo "symlinking common files"
+    ln -s ../common/* .
+    echo "done creating new folder"
+}
+
+function create_backend_file() {
+    new_backend="backend.auto.tfvars"
+    touch $new_backend
+    echo "bucket         = $tfstate_bucket" >> $new_backend
+    echo "key            = \"$new_folder.tfstate\"" >> $new_backend
+    echo "dynamodb_table = $dynamodb_table" >> $new_backend
+    echo "region         = $region" >> $new_backend
+}
+
+function create_readme() {
+    echo "# $new_folder" > README.md
+cat <<EOT >> README.md
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|:----:|:-----:|:-----:|
+
+## Outputs
+
+| Name | Description |
+|------|-------------|
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+EOT
+
+}
+
+function create_terraform_files() {
+    create_readme
+
+    echo "include ../Makefile" > Makefile
+
+    touch main.tf
+    touch variables.tf
+    touch outputs.tf
+
+    create_backend_file
+}
+
+function main() {
+    check_for_errors
+    get_backend_variables
+    create_new_folder
+    create_terraform_files
+
+    echo 'done'
+}
+
+main "$@"
diff --git a/bin/setup.sh b/bin/setup.sh
@@ -5,15 +5,28 @@
 #
 
 
+# get custom provider
+echo "Downloading error checking provider"
+cd common
+curl -sSL https://raw.githubusercontent.com/rhythmictech/terraform-provider-errorcheck/master/update-provider.sh | bash
+cd ..
+
+echo "Symlinking custom provider to account project"
+cd account
+ln -s ../common/terraform.d .
+cd ..
+
 # create base infra
 echo "Initializing tfstate"
-cd setup
+cd account/setup
 terraform init
 terraform apply -auto-approve
-cd ..
+cd ../..
 
 # migrate local state to the remote with the s3 bucket and dynamodb table
 echo "Migrating tfstate to bucket"
+cd account
 cp setup/terraform.tfstate .
 terraform init -backend-config=backend.auto.tfvars
-rm terraform.tfstate
+rm terraform.tfstate
+cd ..
diff --git a/common/common.tf b/common/common.tf
@@ -6,14 +6,9 @@ provider "aws" {
 }
 
 terraform {
-  backend "s3" {
-    bucket = var.tfstate_bucket
-    key    = var.tfstate_key
-    region = var.region
-  }
+  backend "s3" {}
 
   required_version = ">= 0.12.0"
-
 }
 
 # Intentionally throws an error if the workspace doesn't match the env
@@ -39,17 +34,17 @@ variable "region" {
   type        = string
 }
 
-variable "tfstate_bucket" {
+variable "bucket" {
   description = "Bucket that tfstate is stored in"
   type        = string
 }
 
-variable "tfstate_dynamodb_table" {
+variable "dynamodb_table" {
   description = "DynamoDB table for locking/state management"
   type        = string
 }
 
-variable "tfstate_key" {
+variable "key" {
   description = "Key that tfstate is stored in"
   type        = string
-}
+}

Original file line number	Diff line number	Diff line change
`@@ -15,20 +15,17 @@ variable "tags" {`
`15`	`15`	`type = map(string)`
`16`	`16`	`}`
`17`	`17`
`18`		`-variable "tfstate_bucket" {`
	`18`	`+variable "bucket" {`
`19`	`19`	`description = "Bucket that tfstate is stored in"`
`20`	`20`	`type = string`
`21`	`21`	`}`
`22`	`22`
`23`		`-variable "tfstate_dynamodb_table" {`
	`23`	`+variable "dynamodb_table" {`
`24`	`24`	`description = "DynamoDB table for locking/state management"`
`25`	`25`	`type = string`
`26`	`26`	`}`
`27`	`27`
`28`		`-variable "tfstate_key" {`
	`28`	`+variable "key" {`
`29`	`29`	`description = "Key that tfstate is stored in"`
`30`	`30`	`type = string`
`31`	`31`	`}`
`32`		`-`
`33`		`-`
`34`		`-`