| Name | Version |
|---|---|
| terraform | >= 1.0.0 |
| aws | >= 4.20.1 |
| Name | Version |
|---|---|
| aws | >= 4.20.1 |
| local | n/a |
| Name | Source | Version |
|---|---|---|
| codebuild | ./modules/codebuild | n/a |
| codecommit_ado_agent_repo | ./modules/codecommit | n/a |
| codepipeline | ./modules/codepipeline | n/a |
| codepipeline_iam_role | ./modules/iam-role | n/a |
| codepipeline_kms | ./modules/kms | n/a |
| create_task_lambda | ./modules/lambda | n/a |
| create_task_lambda_role | ./modules/iam | n/a |
| ecr | ./modules/ecr | n/a |
| ecs | ./modules/ecs | n/a |
| ecs_ado_api | ./modules/apigw | n/a |
| get_task_lambda | ./modules/lambda | n/a |
| get_task_lambda_role | ./modules/iam | n/a |
| iam_ecs_task_exec_role | ./modules/iam | n/a |
| iam_ecs_task_role | ./modules/iam | n/a |
| s3_artifacts_bucket | ./modules/s3 | n/a |
| Name | Type |
|---|---|
| aws_cloudwatch_log_group.ecs_log_group | resource |
| aws_secretsmanager_secret.ecs_ado_pat | resource |
| aws_caller_identity.current | data source |
| aws_iam_policy_document.ecs-assume-role-policy | data source |
| aws_iam_policy_document.ecs_task_role_policy | data source |
| aws_iam_policy_document.lambda-assume-role-policy | data source |
| aws_iam_policy_document.lambda_create_task_role_policy | data source |
| aws_iam_policy_document.lambda_get_task_role_policy | data source |
| aws_region.current | data source |
| local_file.buildspec_local | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| ado_org | Ado orgname to pass it on as env var for lambda | string |
n/a | yes |
| build_project_source | aws/codebuild/standard:4.0 | string |
"CODEPIPELINE" |
no |
| build_projects | Tags to be attached to the CodePipeline | list(string) |
n/a | yes |
| builder_compute_type | Relative path to the Apply and Destroy build spec file | string |
"BUILD_GENERAL1_SMALL" |
no |
| builder_image | Docker Image to be used by codebuild | string |
"aws/codebuild/amazonlinux2-x86_64-standard:3.0" |
no |
| builder_image_pull_credentials_type | Image pull credentials type used by codebuild project | string |
"CODEBUILD" |
no |
| builder_type | Type of codebuild run environment | string |
"LINUX_CONTAINER" |
no |
| codepipeline_iam_role_name | Name of the IAM role to be used by the Codepipeline | string |
"codepipeline-role" |
no |
| container_env_vars | The container environmnent variables | list(any) |
n/a | yes |
| container_host_port | The port number on the container instance to reserve for the container. | number |
n/a | yes |
| container_image_tag | Container image to tag to be selected | string |
n/a | yes |
| container_port | Port on the container to associate with the load balancer | number |
n/a | yes |
| create_new_repo | Whether to create a new repository. Values are true or false. Defaulted to true always. | bool |
true |
no |
| create_new_role | Whether to create a new IAM Role. Values are true or false. Defaulted to true always. | bool |
true |
no |
| ecr_repo_name | Name for the ECR Repository | string |
n/a | yes |
| ecs_ado_patsecret_description | n/a | string |
"This secret is used at runtime by ECS Tasks to connect to ADO to setup agents" |
no |
| ecs_ado_patsecret_name | Name for the Secret to store ADO PAT | string |
n/a | yes |
| ecs_cluster_name | Name of the ECS cluster | string |
n/a | yes |
| ecs_container_def_name | Name for the container definition under ECS Task definition | string |
n/a | yes |
| ecs_service_count | Number of instances of the task definition to place and keep running | any |
n/a | yes |
| ecs_service_name | Name for the ECS Service resource | string |
n/a | yes |
| environment | Environment in which the script is run. Eg: dev, prod, etc | string |
n/a | yes |
| lambda_memory_size | lamda memrory size | any |
n/a | yes |
| lambda_timeout | lambda timeout value | any |
n/a | yes |
| project_name | Unique name for this project | string |
n/a | yes |
| security_groups | Security Group IDs for ECS VPC Config | string |
n/a | yes |
| source_repo_branch | Default branch in the Source repo for which CodePipeline needs to be configured | string |
n/a | yes |
| source_repo_name | Source repo name of the CodeCommit repository | string |
n/a | yes |
| stage_input | Tags to be attached to the CodePipeline | list(map(any)) |
n/a | yes |
| subnet_ids | Subnet IDs for ECS VPC Config | string |
n/a | yes |
| Name | Description |
|---|---|
| clone_url_http_grc | HTTP (GRC) URL for CodeCommit Repo |
| codecommit_url_http | HTTP URL for CodeCommit Repo |
| ecs_ado_api_invoke_url | URL to invoke ADO hosted agents dynamically via ECS Tasks |
| ecs_ado_pat_secret_arn | Secret ARN to update with ADO PAT to setup agents |