README.md

single module

---

This Terraform module provisions the essential AWS infrastructure and configurations to deploy and integrate Aqua Security.

Requirements

Name	Version
terraform	>= 1.9.0
aws	~> 5.57.0

Providers

Name	Version
aws	~> 5.57.0

Modules

Name	Source	Version
kinesis	./modules/kinesis	n/a
lambda	./modules/lambda	n/a
stackset	./modules/stackset	n/a
trigger	./modules/trigger	n/a

Resources

Name	Type
aws_caller_identity.current	data source
aws_partition.current	data source
aws_regions.enabled	data source

Inputs

Name	Description	Type	Default	Required
additional_tags	Additional resource tags to will be send to the Autoconnect API	map(string)	n/a	yes
aqua_api_key	Aqua API key	string	n/a	yes
aqua_api_secret	Aqua API secret	string	n/a	yes
aqua_autoconnect_url	Aqua Autoconnect API URL	string	n/a	yes
aqua_bucket_name	Aqua Bucket Name	string	n/a	yes
aqua_cspm_aws_account_id	Aqua CSPM AWS Account ID	string	n/a	yes
aqua_cspm_group_id	Aqua CSPM Group ID	number	n/a	yes
aqua_cspm_ipv4_address	Aqua CSPM IPv4 address	string	n/a	yes
aqua_cspm_role_prefix	Aqua CSPM role name prefix	string	n/a	yes
aqua_cspm_url	Aqua CSPM API URL	string	n/a	yes
aqua_session_id	Aqua Session ID	string	n/a	yes
aqua_volscan_api_token	Aqua Volume Scanning API Token	string	n/a	yes
aqua_volscan_api_url	Aqua Volume Scanning API URL	string	n/a	yes
aqua_volscan_aws_account_id	Aqua Volume Scanning AWS Account ID	string	n/a	yes
aqua_worker_role_arn	Aqua Worker Role ARN	string	n/a	yes
create_vpcs	Toggle to create VPCs	bool	n/a	yes
custom_agentless_role_name	Custom Agentless role Name	string	n/a	yes
custom_bucket_name	Custom bucket Name	string	n/a	yes
custom_cspm_role_name	Custom CSPM role Name	string	n/a	yes
custom_internet_gateway_name	Custom Internet Gateway Name	string	n/a	yes
custom_processor_lambda_role_name	Custom Processor lambda role Name	string	n/a	yes
custom_security_group_name	Custom Security Group Name	string	n/a	yes
custom_vpc_name	Custom VPC Name	string	n/a	yes
custom_vpc_subnet1_name	Custom VPC Subnet 1 Name	string	n/a	yes
custom_vpc_subnet2_name	Custom VPC Subnet 2 Name	string	n/a	yes
custom_vpc_subnet_route_table1_name	Custom VPC Route Table 1 Name	string	n/a	yes
custom_vpc_subnet_route_table2_name	Custom VPC Route Table 2 Name	string	n/a	yes
custom_cspm_regions	Custom Cspm Regions	string	""	no
random_id	Random ID to apply to resource names	string	n/a	yes
region	Main AWS Region to to deploy resources	string	n/a	yes
regions	AWS Regions to deploy discovery and scanning resources	list(string)	n/a	yes

Outputs

Name	Description
agentless_role_arn	The ARN of the IAM role created for the Agentless Volume Scanning
cloudwatch_event_bus_arn	Cloudwatch Event Bus ARN
cloudwatch_event_rule_arn	Cloudwatch Event Rule ARN
cspm_external_id	Aqua CSPM External ID generated by the 'generate_cspm_external_id_function' Lambda function
cspm_lambda_execution_role_arn	The ARN of the lambda execution IAM role created for the CSPM
cspm_role_arn	The ARN of the IAM role created for the CSPM
kinesis_firehose_bucket_name	Kinesis Firehose S3 Bucket Name
kinesis_firehose_delivery_stream_arn	Kinesis Firehose Delivery Stream ARN
kinesis_firehose_role_arn	Kinesis Firehose Role ARN
kinesis_processor_lambda_execution_role_arn	Kinesis Processor Lambda Execution Role ARN
kinesis_processor_lambda_function_arn	Kinesis Processor Lambda Function ARN
kinesis_processor_lambda_log_group_name	Kinesis Processor Lambda Cloudwatch Log Group Name
kinesis_stream_arn	Kinesis Stream ARN
kinesis_stream_events_role_arn	Kinesis Stream Events Role ARN
onboarding_status	Onboarding API Status Result
stack_set_admin_role_arn	ARN of the StackSet admin role
stack_set_admin_role_name	Name of the StackSet admin role
stack_set_execution_role_arn	ARN of the StackSet execution role
stack_set_execution_role_name	Name of the StackSet execution role
stack_set_name	Name of the CloudFormation StackSet
stack_set_template_url	URL of the CloudFormation template used by the StackSet
volscan_external_id	Aqua Volume Scanning External ID generated by the 'generate_volscan_external_id_function' Lambda function