Merge pull request #5 from arunlalp/gitlab

Gitlab

Author: arunlalp

environments/dev/tag-policy/main.tf

@@ -0,0 +1,11 @@
+provider "aws" {
+  region = var.region
+}
+
+module "tag-policy" {
+  source      = "../../../modules/tag-policy"
+  region      = var.region
+  policy_name = var.policy_name
+  policy_type = var.policy_type
+  target_id   = var.target_id
+}

environments/dev/tag-policy/outputs.tf

@@ -0,0 +1,4 @@
+output "policy_id" {
+  value       = module.tag-policy.policy_id
+  description = "ID of the tag policy"
+}

environments/dev/tag-policy/variables.tf

@@ -0,0 +1,19 @@
+variable "region" {
+  type        = string
+  description = "Region for the provider"
+}
+
+variable "policy_name" {
+  type        = string
+  description = "Name for the tag policy"
+}
+
+variable "policy_type" {
+  type        = string
+  description = "Type of the policy"
+}
+
+variable "target_id" {
+  type        = number
+  description = "ID of the target"
+}

modules/tag-policy/main.tf

@@ -0,0 +1,103 @@
+# Provider Configuration 
+provider "aws" {
+  region = var.region
+}
+
+# Create Tag Policy
+resource "aws_organizations_policy" "tag_policy" {
+  name        = var.policy_name
+  description = "Resource Provision"
+
+  content = jsonencode({
+    "tags" = {
+      "Name" = {
+        "tag_key" = {
+          "@@assign" = "Name"
+        },
+        "enforced_for" = {
+          "@@assign" = [
+            "ec2:instance",
+            "ec2:security-group"
+          ]
+        }
+      },
+      "Environment" = {
+        "tag_key" = {
+          "@@assign" = "Environment"
+        },
+        "tag_value" = {
+          "@@assign" = [
+            "dev",
+            "stage",
+            "prod"
+          ]
+        },
+        "enforced_for" = {
+          "@@assign" = [
+            "ec2:instance",
+            "ec2:security-group"
+          ]
+        }
+      },
+      "Owner" = {
+        "tag_key" = {
+          "@@assign" = "Owner"
+        },
+        "tag_value" = {
+          "@@assign" = [
+            "Techiescamp"
+          ]
+        },
+        "enforced_for" = {
+          "@@assign" = [
+            "ec2:instance",
+            "ec2:security-group"
+          ]
+        }
+      },
+      "CostCenter" = {
+        "tag_key" = {
+          "@@assign" = "CostCenter"
+        },
+        "tag_value" = {
+          "@@assign" = [
+            "project-pet-clinic"
+          ]
+        },
+        "enforced_for" = {
+          "@@assign" = [
+            "ec2:instance",
+            "ec2:security-group"
+          ]
+        }
+      },
+      "Application" = {
+        "tag_key" = {
+          "@@assign" = "Application"
+        },
+        "tag_value" = {
+          "@@assign" = [
+            "web-app"
+          ]
+        },
+        "enforced_for" = {
+          "@@assign" = [
+            "ec2:instance",
+            "ec2:security-group"
+          ]
+        }
+      }
+    }
+  })
+
+  type = var.policy_type
+}
+
+resource "aws_organizations_policy_attachment" "account_attachment" {
+  policy_id = aws_organizations_policy.tag_policy.id
+  target_id = var.target_id
+}
+
+
+
+

modules/tag-policy/outputs.tf

@@ -0,0 +1,4 @@
+output "policy_id" {
+  value       = aws_organizations_policy.tag_policy.id
+  description = "ID of the tag policy."
+}

modules/tag-policy/variables.tf

@@ -0,0 +1,19 @@
+variable "region" {
+  type        = string
+  description = "Region for the provider."
+}
+
+variable "policy_name" {
+  type        = string
+  description = "Name for the tag policy."
+}
+
+variable "policy_type" {
+  type        = string
+  description = "Type of the policy."
+}
+
+variable "target_id" {
+  type        = number
+  description = "ID of the target."
+}

vars/dev/tag-policy.tfvars

@@ -0,0 +1,5 @@
+# Tag Policy Vars
+region      = "eu-north-1"
+policy_name = "Techiescamp"
+policy_type = "TAG_POLICY"
+target_id   = "814200988517"