Terraform formatting

Author: LeoDiazL

operations/deployment/terraform/aws/aws_variables.tf

@@ -125,7 +125,7 @@ variable "aws_ec2_port_list" {
   default     = ""
 }
 
-variable "aws_ec2_user_data_replace_on_change"  {
+variable "aws_ec2_user_data_replace_on_change" {
   type        = bool
   description = "Forces destruction of EC2 instance"
   default     = true
@@ -145,21 +145,21 @@ variable "aws_vpc_create" {
 }
 
 variable "aws_vpc_name" {
-  type = string
+  type        = string
   description = "Name for the aws vpc"
-  default = ""
+  default     = ""
 }
 
 variable "aws_vpc_id" {
-  type = string
+  type        = string
   description = "aws vpc id"
-  default = ""
+  default     = ""
 }
 
 variable "aws_vpc_subnet_id" {
-  type = string
+  type        = string
   description = "aws vpc subnet id"
-  default = ""
+  default     = ""
 }
 
 variable "aws_vpc_cidr_block" {
@@ -1602,13 +1602,13 @@ variable "aws_ecs_additional_tags" {
 }
 
 # ECR
-variable "aws_ecr_repo_create" { 
+variable "aws_ecr_repo_create" {
   description = "Determines whether a repository will be created"
   type        = bool
   default     = false
 }
 
-variable "aws_ecr_repo_type" { 
+variable "aws_ecr_repo_type" {
   description = "The type of repository to create. Either `public` or `private`"
   type        = string
   default     = "private"
@@ -1736,7 +1736,7 @@ variable "aws_ecr_public_repo_catalog" {
   default     = {}
 }
 
-variable "aws_ecr_registry_policy_input" { 
+variable "aws_ecr_registry_policy_input" {
   description = "The policy document. This is a JSON formatted string"
   type        = string
   default     = ""

operations/deployment/terraform/aws/bitovi_main.tf

@@ -7,9 +7,9 @@ resource "aws_cloudwatch_log_group" "cw_log_group" {
 }
 
 resource "local_file" "cloudwatch_docker_config" {
-  count = var.docker_cloudwatch_enable ? 1 : 0
+  count    = var.docker_cloudwatch_enable ? 1 : 0
   filename = format("%s/%s", abspath(path.root), "bitovi-daemon.json")
-  content = <<-EOT
+  content  = <<-EOT
 {
   "log-driver": "awslogs",
   "log-opts": {

operations/deployment/terraform/modules/aws/ansible/aws_ansible_cloudwatch.tf

@@ -16,7 +16,7 @@ EOT
 }
 
 data "aws_efs_file_system" "mount_efs" {
-  count = var.aws_efs_enable ? 1 : 0
+  count          = var.aws_efs_enable ? 1 : 0
   file_system_id = var.aws_efs_fs_id
 }
 

operations/deployment/terraform/modules/aws/ansible/aws_ansible_inventory.tf

@@ -40,10 +40,10 @@ resource "aws_security_group_rule" "ingress_aurora_extras" {
 }
 
 locals {
-  aws_aurora_subnets = var.aws_aurora_subnets  != "" ? [for n in split(",", var.aws_aurora_subnets)  : (n)] :  var.aws_subnets_vpc_subnets_ids
-  skip_snap = length(var.aws_aurora_database_final_snapshot) != "" ? false : true
+  aws_aurora_subnets             = var.aws_aurora_subnets != "" ? [for n in split(",", var.aws_aurora_subnets) : (n)] : var.aws_subnets_vpc_subnets_ids
+  skip_snap                      = length(var.aws_aurora_database_final_snapshot) != "" ? false : true
   aws_aurora_cloudwatch_log_type = var.aws_aurora_cloudwatch_log_type != "" ? [for n in split(",", var.aws_aurora_cloudwatch_log_type) : n] : local.log_types
-  log_types = strcontains(var.aws_aurora_engine, "postgres") ? ["postgresql"] : strcontains(var.aws_aurora_engine, "mysql") ? ["audit","error","general","slowquery"] : []
+  log_types                      = strcontains(var.aws_aurora_engine, "postgres") ? ["postgresql"] : strcontains(var.aws_aurora_engine, "mysql") ? ["audit", "error", "general", "slowquery"] : []
 }
 
 resource "aws_db_subnet_group" "selected" {
@@ -56,54 +56,54 @@ resource "aws_db_subnet_group" "selected" {
 
 resource "aws_rds_cluster" "aurora" {
   # DB Parameters
-  cluster_identifier                  = var.aws_aurora_cluster_name != "" ? var.aws_aurora_cluster_name : var.aws_resource_identifier
-  engine                              = var.aws_aurora_engine
-  engine_version                      = var.aws_aurora_engine_version
-  engine_mode                         = var.aws_aurora_engine_mode != "" ? var.aws_aurora_engine_mode : null
-  availability_zones                  = var.aws_aurora_availability_zones != "" ? [var.aws_aurora_availability_zones] : []
-  apply_immediately                   = var.aws_aurora_cluster_apply_immediately
+  cluster_identifier = var.aws_aurora_cluster_name != "" ? var.aws_aurora_cluster_name : var.aws_resource_identifier
+  engine             = var.aws_aurora_engine
+  engine_version     = var.aws_aurora_engine_version
+  engine_mode        = var.aws_aurora_engine_mode != "" ? var.aws_aurora_engine_mode : null
+  availability_zones = var.aws_aurora_availability_zones != "" ? [var.aws_aurora_availability_zones] : []
+  apply_immediately  = var.aws_aurora_cluster_apply_immediately
   # Storage
-  allocated_storage                   = try(tonumber(var.aws_aurora_allocated_storage),null)
-  storage_encrypted                   = var.aws_aurora_storage_encrypted
-  kms_key_id                          = var.aws_aurora_kms_key_id 
-  storage_type                        = var.aws_aurora_storage_type
-  iops                                = try(tonumber(var.aws_aurora_storage_iops),null)
+  allocated_storage = try(tonumber(var.aws_aurora_allocated_storage), null)
+  storage_encrypted = var.aws_aurora_storage_encrypted
+  kms_key_id        = var.aws_aurora_kms_key_id
+  storage_type      = var.aws_aurora_storage_type
+  iops              = try(tonumber(var.aws_aurora_storage_iops), null)
   # DB Details
   database_name                       = var.aws_aurora_database_name
   master_username                     = var.aws_aurora_master_username
   master_password                     = sensitive(random_password.rds.result)
   iam_database_authentication_enabled = var.aws_aurora_iam_auth_enabled
   iam_roles                           = var.aws_aurora_iam_roles != "" ? [var.aws_aurora_iam_roles] : []
-  db_cluster_parameter_group_name     = strcontains(var.aws_aurora_engine, "mysql") ? aws_rds_cluster_parameter_group.mysql[0].name : strcontains(var.aws_aurora_engine, "postgres") ?  aws_rds_cluster_parameter_group.postgresql[0].name : "" 
+  db_cluster_parameter_group_name     = strcontains(var.aws_aurora_engine, "mysql") ? aws_rds_cluster_parameter_group.mysql[0].name : strcontains(var.aws_aurora_engine, "postgres") ? aws_rds_cluster_parameter_group.postgresql[0].name : ""
   # Backup & Maint
-  enabled_cloudwatch_logs_exports     = var.aws_aurora_cloudwatch_enable ? local.aws_aurora_cloudwatch_log_type : []
-  backtrack_window                    = var.aws_aurora_backtrack_window 
-  backup_retention_period             = var.aws_aurora_backup_retention_period
-  preferred_backup_window             = var.aws_aurora_backup_window
-  preferred_maintenance_window        = var.aws_aurora_maintenance_window
-  deletion_protection                 = var.aws_aurora_deletion_protection
-  delete_automated_backups            = var.aws_aurora_delete_auto_backups
-  final_snapshot_identifier           = var.aws_aurora_database_final_snapshot != "" ? var.aws_aurora_database_final_snapshot : null
-  skip_final_snapshot                 = var.aws_aurora_database_final_snapshot != "" ? false : true
-  snapshot_identifier                 = var.aws_aurora_restore_snapshot_id
+  enabled_cloudwatch_logs_exports = var.aws_aurora_cloudwatch_enable ? local.aws_aurora_cloudwatch_log_type : []
+  backtrack_window                = var.aws_aurora_backtrack_window
+  backup_retention_period         = var.aws_aurora_backup_retention_period
+  preferred_backup_window         = var.aws_aurora_backup_window
+  preferred_maintenance_window    = var.aws_aurora_maintenance_window
+  deletion_protection             = var.aws_aurora_deletion_protection
+  delete_automated_backups        = var.aws_aurora_delete_auto_backups
+  final_snapshot_identifier       = var.aws_aurora_database_final_snapshot != "" ? var.aws_aurora_database_final_snapshot : null
+  skip_final_snapshot             = var.aws_aurora_database_final_snapshot != "" ? false : true
+  snapshot_identifier             = var.aws_aurora_restore_snapshot_id
   # Net
-  db_subnet_group_name                = aws_db_subnet_group.selected.id
-  db_cluster_instance_class           = var.aws_aurora_cluster_db_instance_class
-  vpc_security_group_ids              = [aws_security_group.aurora_security_group.id]
-  port                                = var.aws_aurora_database_port
+  db_subnet_group_name      = aws_db_subnet_group.selected.id
+  db_cluster_instance_class = var.aws_aurora_cluster_db_instance_class
+  vpc_security_group_ids    = [aws_security_group.aurora_security_group.id]
+  port                      = var.aws_aurora_database_port
   # Extras
   performance_insights_enabled          = var.aws_aurora_performance_insights_enable
   performance_insights_retention_period = var.aws_aurora_performance_insights_enable ? var.aws_aurora_performance_insights_retention : null
   performance_insights_kms_key_id       = var.aws_aurora_performance_insights_enable ? var.aws_aurora_performance_insights_kms_key_id : null
   dynamic "restore_to_point_in_time" {
-     for_each = length(var.aws_aurora_restore_to_point_in_time) > 0 ? [var.aws_aurora_restore_to_point_in_time] : []
+    for_each = length(var.aws_aurora_restore_to_point_in_time) > 0 ? [var.aws_aurora_restore_to_point_in_time] : []
 
-     content {
-       restore_to_time            = try(aws_aurora_restore_to_point_in_time.value.restore_to_time, null)
-       restore_type               = try(aws_aurora_restore_to_point_in_time.value.restore_type, null)
-       source_cluster_identifier  = aws_aurora_restore_to_point_in_time.value.source_cluster_identifier
-       use_latest_restorable_time = try(aws_aurora_restore_to_point_in_time.value.use_latest_restorable_time, null)
-     }
+    content {
+      restore_to_time            = try(aws_aurora_restore_to_point_in_time.value.restore_to_time, null)
+      restore_type               = try(aws_aurora_restore_to_point_in_time.value.restore_type, null)
+      source_cluster_identifier  = aws_aurora_restore_to_point_in_time.value.source_cluster_identifier
+      use_latest_restorable_time = try(aws_aurora_restore_to_point_in_time.value.use_latest_restorable_time, null)
+    }
   }
 
   lifecycle {
@@ -132,25 +132,25 @@ resource "aws_rds_cluster_instance" "cluster_instance" {
   ca_cert_identifier           = var.aws_aurora_db_ca_cert_identifier
   preferred_maintenance_window = var.aws_aurora_db_maintenance_window
 }
- 
+
 resource "aws_rds_cluster_parameter_group" "mysql" {
   count       = strcontains(var.aws_aurora_engine, "mysql") ? 1 : 0
   name        = "${var.aws_resource_identifier}-mysql"
   description = "${var.aws_resource_identifier} cluster parameter group"
   family      = var.aws_aurora_database_group_family != "" ? var.aws_aurora_database_group_family : "${var.aws_aurora_engine}8.0"
 
   parameter {
-      name         = "require_secure_transport"
-      value        = "ON"
-      apply_method = "immediate"
+    name         = "require_secure_transport"
+    value        = "ON"
+    apply_method = "immediate"
   }
   lifecycle {
     create_before_destroy = true
   }
 }
 
 resource "aws_rds_cluster_parameter_group" "postgresql" {
-  count       = strcontains(var.aws_aurora_engine, "postgres")? 1 : 0
+  count       = strcontains(var.aws_aurora_engine, "postgres") ? 1 : 0
   name        = "${var.aws_resource_identifier}-postgres"
   description = "${var.aws_resource_identifier} cluster parameter group"
   family      = var.aws_aurora_database_group_family != "" ? var.aws_aurora_database_group_family : "${var.aws_aurora_engine}15"
@@ -173,43 +173,43 @@ resource "aws_rds_cluster_parameter_group" "postgresql" {
 }
 
 resource "random_password" "rds" {
-  length = 10
+  length  = 10
   special = false
 }
 
 // Creates a secret manager secret for the databse credentials
 resource "aws_secretsmanager_secret" "aurora_database_credentials" {
-  name   = "${var.aws_resource_identifier_supershort}-aurora-${random_string.random_sm.result}"
+  name = "${var.aws_resource_identifier_supershort}-aurora-${random_string.random_sm.result}"
 }
 
 # Username and Password are repeated for compatibility with proxy and legacy code.
 resource "aws_secretsmanager_secret_version" "database_credentials_sm_secret_version_dev" {
   secret_id = aws_secretsmanager_secret.aurora_database_credentials.id
   secret_string = jsonencode({
-   database_password = sensitive(aws_rds_cluster.aurora.master_password)
-   username          = sensitive(aws_rds_cluster.aurora.master_username)
-   password          = sensitive(aws_rds_cluster.aurora.master_password)
-   host              = sensitive(aws_rds_cluster.aurora.endpoint)
-   port              = sensitive(aws_rds_cluster.aurora.port)
-   database          = sensitive(aws_rds_cluster.aurora.database_name == null ? "" : aws_rds_cluster.aurora.database_name)
-   engine            = sensitive(local.dba_engine)
-   engine_version    = sensitive(aws_rds_cluster.aurora.engine_version_actual)
-   DB_USER           = sensitive(aws_rds_cluster.aurora.master_username)
-   DB_USERNAME       = sensitive(aws_rds_cluster.aurora.master_username)
-   DB_PASSWORD       = sensitive(aws_rds_cluster.aurora.master_password)
-   DB_HOST           = sensitive(aws_rds_cluster.aurora.endpoint)
-   DB_PORT           = sensitive(aws_rds_cluster.aurora.port)
-   DB_NAME           = sensitive(aws_rds_cluster.aurora.database_name == null ? "" : aws_rds_cluster.aurora.database_name)
-   DB_ENGINE         = sensitive(local.dba_engine)
-   DB_ENGINE_VERSION = sensitive(aws_rds_cluster.aurora.engine_version_actual)
+    database_password = sensitive(aws_rds_cluster.aurora.master_password)
+    username          = sensitive(aws_rds_cluster.aurora.master_username)
+    password          = sensitive(aws_rds_cluster.aurora.master_password)
+    host              = sensitive(aws_rds_cluster.aurora.endpoint)
+    port              = sensitive(aws_rds_cluster.aurora.port)
+    database          = sensitive(aws_rds_cluster.aurora.database_name == null ? "" : aws_rds_cluster.aurora.database_name)
+    engine            = sensitive(local.dba_engine)
+    engine_version    = sensitive(aws_rds_cluster.aurora.engine_version_actual)
+    DB_USER           = sensitive(aws_rds_cluster.aurora.master_username)
+    DB_USERNAME       = sensitive(aws_rds_cluster.aurora.master_username)
+    DB_PASSWORD       = sensitive(aws_rds_cluster.aurora.master_password)
+    DB_HOST           = sensitive(aws_rds_cluster.aurora.endpoint)
+    DB_PORT           = sensitive(aws_rds_cluster.aurora.port)
+    DB_NAME           = sensitive(aws_rds_cluster.aurora.database_name == null ? "" : aws_rds_cluster.aurora.database_name)
+    DB_ENGINE         = sensitive(local.dba_engine)
+    DB_ENGINE_VERSION = sensitive(aws_rds_cluster.aurora.engine_version_actual)
   })
 }
 
 resource "random_string" "random_sm" {
-  length    = 5
-  lower     = true
-  special   = false
-  numeric   = false
+  length  = 5
+  lower   = true
+  special = false
+  numeric = false
 }
 
 resource "aws_cloudwatch_log_group" "logs" {
@@ -219,7 +219,7 @@ resource "aws_cloudwatch_log_group" "logs" {
 
 ### All of this added to handle snapshots
 resource "aws_db_cluster_snapshot" "db_snapshot" {
-  count                          = var.aws_aurora_snapshot_name != "" ? ( var.aws_aurora_snapshot_overwrite ? 0 : 1 ) : 0 
+  count                          = var.aws_aurora_snapshot_name != "" ? (var.aws_aurora_snapshot_overwrite ? 0 : 1) : 0
   db_cluster_identifier          = aws_rds_cluster.aurora.cluster_identifier
   db_cluster_snapshot_identifier = var.aws_aurora_snapshot_name
   lifecycle {
@@ -228,7 +228,7 @@ resource "aws_db_cluster_snapshot" "db_snapshot" {
 }
 
 resource "aws_db_cluster_snapshot" "overwrite_db_snapshot" {
-  count                          = var.aws_aurora_snapshot_name != "" ? ( var.aws_aurora_snapshot_overwrite ? 1 : 0 ) : 0
+  count                          = var.aws_aurora_snapshot_name != "" ? (var.aws_aurora_snapshot_overwrite ? 1 : 0) : 0
   db_cluster_identifier          = aws_rds_cluster.aurora.cluster_identifier
   db_cluster_snapshot_identifier = var.aws_aurora_snapshot_name
   lifecycle {
@@ -262,5 +262,5 @@ output "random_string" {
 }
 
 output "aurora_sg_id" {
-    value = aws_security_group.aurora_security_group.id
+  value = aws_security_group.aurora_security_group.id
 }

operations/deployment/terraform/modules/aws/aurora/aws_aurora.tf

@@ -9,7 +9,7 @@ data "aws_acm_certificate" "issued" {
   for_each = local.is_enabled_and_valid ? {
     "domain" : var.aws_r53_domain_name,
     "wildcard" : "*.${var.aws_r53_domain_name}"
-    "sub": "${var.aws_r53_sub_domain_name}.${var.aws_r53_domain_name}"
+    "sub" : "${var.aws_r53_sub_domain_name}.${var.aws_r53_domain_name}"
   } : {}
   domain = var.aws_r53_domain_name
 }
@@ -41,13 +41,13 @@ resource "aws_acm_certificate_validation" "root_domain" {
 
 # This block will create and validate the sub domain cert ONLY
 resource "aws_acm_certificate" "sub_domain" {
-  count             = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_sub_domain_name != "" ? (var.aws_r53_create_root_cert ?  0 : 1 ) : 0) : 0) : 0) :0
+  count             = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_sub_domain_name != "" ? (var.aws_r53_create_root_cert ? 0 : 1) : 0) : 0) : 0) : 0
   domain_name       = "${var.aws_r53_sub_domain_name}.${var.aws_r53_domain_name}"
   validation_method = "DNS"
 }
 
 resource "aws_route53_record" "sub_domain" {
-  count           = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_sub_domain_name != "" ? (var.aws_r53_create_root_cert ?  0 : 1 ) : 0) : 0) : 0) :0
+  count           = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_sub_domain_name != "" ? (var.aws_r53_create_root_cert ? 0 : 1) : 0) : 0) : 0) : 0
   allow_overwrite = true
   name            = tolist(aws_acm_certificate.sub_domain[0].domain_validation_options)[0].resource_record_name
   records         = [tolist(aws_acm_certificate.sub_domain[0].domain_validation_options)[0].resource_record_value]
@@ -57,22 +57,22 @@ resource "aws_route53_record" "sub_domain" {
 }
 
 resource "aws_acm_certificate_validation" "sub_domain" {
-  count                   = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_create_root_cert ?  0 : 1) : 0) : 0) :0
+  count                   = local.is_enabled_and_valid ? (var.aws_r53_create_sub_cert ? (var.aws_r53_domain_name != "" ? (var.aws_r53_create_root_cert ? 0 : 1) : 0) : 0) : 0
   certificate_arn         = aws_acm_certificate.sub_domain[0].arn
   validation_record_fqdns = [for record in aws_route53_record.sub_domain : record.fqdn]
 }
 
 locals {
   is_enabled_and_valid = var.aws_r53_domain_name != "" ? true : false
   selected_arn = (
-    local.is_enabled_and_valid ? 
+    local.is_enabled_and_valid ?
     (var.aws_r53_cert_arn != "" ? var.aws_r53_cert_arn :
       (!var.aws_r53_create_root_cert ?
         (!var.aws_r53_create_sub_cert ?
           (var.fqdn_provided ? local.acm_arn : "")
           : aws_acm_certificate.sub_domain[0].arn
         ) : aws_acm_certificate.root_domain[0].arn
-      ) 
+      )
     ) : ""
   )
   cert_available = (