upgraded module to 0.12 and got the example working again

Author: apolloakora

example/security.group.example-main.tf

@@ -1,101 +1,111 @@
 
-locals
-{
-    ecosystem_name = "sec-group-test"
+/*
+ | --
+ | -- If you are using an IAM role as the AWS access mechanism then
+ | -- pass it as in_role_arn commonly through an environment variable
+ | -- named TF_VAR_in_role_arn in addition to the usual AWS access
+ | -- key, secret key and default region parameters.
+ | --
+*/
+provider aws {
+    dynamic assume_role {
+        for_each = length( var.in_role_arn ) > 0 ? [ var.in_role_arn ] : [] 
+        content {
+            role_arn = assume_role.value
+	}
+    }
+}
+
+
+/*
+ | --
+ | -- Terraform will tag every significant resource allowing you to report and collate
+ | --
+ | --   [1] - all infrastructure in all environments dedicated to your app (ecosystem_name)
+ | --   [2] - the infrastructure dedicated to this environment instance (timestamp)
+ | --
+*/
+locals {
+    ecosystem_name = "security-grp-ex"
+    timestamp = formatdate( "YYMMDDhhmmss", timestamp() )
+    date_time = formatdate( "EEEE DD-MMM-YY hh:mm:ss ZZZ", timestamp() )
+    description = "was created by me on ${ local.date_time }."
 }
 
-module virtual-private-cloud-1
-{
-    source       = "github.com/devops4me/terraform-aws-vpc-network"
+
+### ############################## ###
+### Example Security Group Modules ###
+### ############################## ###
+
+module virtual-private-cloud-1 {
+
+    source  = "devops4me/vpc-network/aws"
+    version = "~> 1.0.3"
+
     in_vpc_cidr  = "10.123.0.0/16"
     in_create_private_gateway = false
     in_create_public_gateway  = false
 
-    in_ecosystem_name     = "${ local.ecosystem_name }-01"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
+    in_ecosystem   = "${ local.ecosystem_name }-01"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }
 
-module security-group-test-1a
-{
-    source         = ".."
-    in_vpc_id      = "${ module.virtual-private-cloud-1.out_vpc_id }"
-    in_ingress     = [ "elastic", "java" ]
+module security-group-test-1a {
 
-    in_ecosystem_name     = "${ local.ecosystem_name }-1a"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
+    source         = "./.."
+    in_vpc_id      = module.virtual-private-cloud-1.out_vpc_id
+    in_ingress     = [ "docker", "java" ]
+
+    in_ecosystem   = "${ local.ecosystem_name }-1a"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }
 
-module security-group-test-1b
-{
-    source         = ".."
-    in_vpc_id      = "${ module.virtual-private-cloud-1.out_vpc_id }"
+module security-group-test-1b {
+
+    source         = "./.."
+    in_vpc_id      = module.virtual-private-cloud-1.out_vpc_id
     in_ingress     = [ "ssh", "http", "https" ]
 
-    in_ecosystem_name     = "${ local.ecosystem_name }-1b"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
+    in_ecosystem   = "${ local.ecosystem_name }-1b"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }
 
-module virtual-private-cloud-2
-{
-    source       = "github.com/devops4me/terraform-aws-vpc-network"
+module virtual-private-cloud-2 {
+
+    source  = "devops4me/vpc-network/aws"
+    version = "~> 1.0.3"
+
     in_vpc_cidr  = "10.124.0.0/16"
     in_create_private_gateway = false
     in_create_public_gateway  = false
 
-    in_ecosystem_name     = "${ local.ecosystem_name }-02"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
+    in_ecosystem     = "${ local.ecosystem_name }-02"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }
 
-module security-group-test-2a
-{
-    source         = ".."
-    in_ingress     = [ "elastic", "ssh", "java" ]
+module security-group-test-2a {
+
+    source         = "./.."
+    in_ingress     = [ "https", "ssh", "jenkins" ]
     in_egress      = [ "all-traffic" ]
-    in_vpc_id      = "${ module.virtual-private-cloud-2.out_vpc_id }"
+    in_vpc_id      = module.virtual-private-cloud-2.out_vpc_id
 
-    in_ecosystem_name     = "${ local.ecosystem_name }-2a"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
+    in_ecosystem   = "${ local.ecosystem_name }-2a"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }
 
-module security-group-test-2b
-{
-    source         = "github.com/devops4me/terraform-aws-security-group"
-    in_vpc_id      = "${ module.virtual-private-cloud-2.out_vpc_id }"
-    in_ingress     = [ "etcd-client", "etcd-server", "epmd" ]
-
-    in_ecosystem_name     = "${ local.ecosystem_name }-2b"
-    in_tag_timestamp      = "${ module.resource-tags.out_tag_timestamp }"
-    in_tag_description    = "${ module.resource-tags.out_tag_description }"
-}
+module security-group-test-2b {
 
-/*
- | --
- | -- Remember the AWS resource tags! Using this module, every
- | -- infrastructure component is tagged to tell you 5 things.
- | --
- | --   a) who (which IAM user) created the component
- | --   b) which eco-system instance is this component a part of
- | --   c) when (timestamp) was this component created
- | --   d) where (in which AWS region) was this component created
- | --   e) which eco-system class is this component a part of
- | --
-*/
-module resource-tags
-{
-    source = "github.com/devops4me/terraform-aws-resource-tags"
-}
-
-output security_group_id_1a
-{
-    value = "${module.security-group-test-1a.out_security_group_id}"
-}
+    source         = "./.."
+    in_vpc_id      = module.virtual-private-cloud-2.out_vpc_id
+    in_ingress     = [ "sonar", "postgres", "ecs" ]
 
-output security_group_id_2b
-{
-    value = "${module.security-group-test-2b.out_security_group_id}"
+    in_ecosystem   = "${ local.ecosystem_name }-2b"
+    in_timestamp   = local.timestamp
+    in_description = local.description
 }

example/security.group.example-outputs.tf

@@ -0,0 +1,8 @@
+
+output security_group_id_1a {
+    value = module.security-group-test-1a.out_security_group_id
+}
+
+output security_group_id_2b {
+    value = module.security-group-test-2b.out_security_group_id
+}

example/security.group.example-variables.tf

@@ -0,0 +1,14 @@
+
+/*
+ | --
+ | -- If you are using an IAM role as the AWS access mechanism then
+ | -- pass it as in_role_arn commonly through an environment variable
+ | -- named TF_VAR_in_role_arn in addition to the usual AWS access
+ | -- key, secret key and default region parameters.
+ | --
+*/
+variable in_role_arn {
+    description = "The optional role arn to use if your AWS access mechanism is via IAM roles."
+    default     = ""
+    type        = string
+}

security.group-main.tf

@@ -2,8 +2,8 @@
 locals {
 
     security_group_tags = {
-        Name = "security-group-${ var.in_ecosystem_name }-${ var.in_tag_timestamp }"
-        Desc = "New security group for ${ var.in_ecosystem_name } ${ var.in_tag_description }"
+        Name = "security-group-${ var.in_ecosystem }-${ var.in_timestamp }"
+        Desc = "New security group for ${ var.in_ecosystem } ${ var.in_description }"
     }
 
 }
@@ -18,8 +18,8 @@ locals {
 resource aws_security_group new {
 
     vpc_id      = var.in_vpc_id
-    name        = "security-group-${ var.in_ecosystem_name }-${ var.in_tag_timestamp }-n"
-    description = "This new security group ${ var.in_tag_description }"
+    name        = "security-group-${ var.in_ecosystem }-${ var.in_timestamp }-n"
+    description = "This new security group ${ var.in_description }"
     tags        = merge( local.security_group_tags, var.in_mandated_tags )
 
 }

security.group-outputs.tf

@@ -7,6 +7,5 @@
 output out_security_group_id {
 
     description = "The string ID of either the default security group or the just created new one."
-    value       = "${ aws_security_group.new.id }"
-    type        = string
+    value       = aws_security_group.new.id
 }

security.group-variables.tf

@@ -74,31 +74,34 @@ variable in_mandated_tags {
 }
 
 
-### ################# ###
-### in_ecosystem_name ###
-### ################# ###
-
-variable in_ecosystem_name {
+### ############ ###
+### in_ecosystem ###
+### ############ ###
 
+variable in_ecosystem {
     description = "Creational stamp binding all infrastructure components created on behalf of this ecosystem instance."
+    default = "security-grp"
+    type    = string
 }
 
 
-### ################ ###
-### in_tag_timestamp ###
-### ################ ###
-
-variable in_tag_timestamp {
+### ############ ###
+### in_timestamp ###
+### ############ ###
 
+variable in_timestamp {
     description = "A timestamp for resource tags in the format ymmdd-hhmm like 80911-1435"
+    default     = "timestamp"
+    type        = string
 }
 
 
-### ################## ###
-### in_tag_description ###
-### ################## ###
-
-variable in_tag_description {
+### ############## ###
+### in_description ###
+### ############## ###
 
+variable in_description {
     description = "Ubiquitous note detailing who, when, where and why for every infrastructure component."
+    default     = "This VPC network was created for an ecosystem."
+    type        = string
 }