Initial commit

Author: jbonnier

.docs/header.md

@@ -0,0 +1,32 @@
+![nventive](https://nventive-public-assets.s3.amazonaws.com/nventive_logo_github.svg?v=2)
+
+# terraform-aws-acm-certificate-import
+
+[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg?style=flat-square)](LICENSE) [![Latest Release](https://img.shields.io/github/release/nventive/terraform-aws-acm-certificate-import.svg?style=flat-square)](https://github.com/nventive/terraform-aws-acm-certificate-import/releases/latest)
+
+Terraform module to import an existing certificate into ACM.
+
+---
+
+## Examples
+
+**IMPORTANT:** We do not pin modules to versions in our examples because of the difficulty of keeping the versions in
+the documentation in sync with the latest released versions. We highly recommend that in your code you pin the version
+to the exact version you are using so that your infrastructure remains stable, and update versions in a systematic way
+so that they do not catch you by surprise.
+
+```hcl
+module "cert" {
+  source = "nventive/acm-certificate-import/aws"
+  # We recommend pinning every module to a specific version
+  # version = "x.x.x"
+
+  namespace = "eg"
+  stage     = "test"
+  name      = "app"
+
+  private_key_base64       = filebase64("${path.module}/key.pem")
+  certificate_body_base64  = filebase64("${path.module}/cert.pem")
+  certificate_chain_base64 = filebase64("${path.module}/chain.pem")
+}
+```

.docs/terraform-docs.yaml

@@ -0,0 +1,53 @@
+formatter: "markdown table"
+
+header-from: .docs/header.md
+footer-from: .docs/footer.md
+
+recursive:
+  enabled: false
+  path: modules
+
+sections:
+  hide: []
+  show: []
+
+content: |-
+  {{ .Header }}
+  {{ .Requirements }}
+  {{ .Providers }}
+  {{ .Modules }}
+  {{ .Resources }}
+  {{ .Inputs }}
+  {{ .Outputs }}
+  {{ .Footer }}
+
+output:
+  file: "README.md"
+  mode: replace
+  template: |-
+    <!-- BEGIN_TF_DOCS -->
+    {{ .Content }}
+    <!-- END_TF_DOCS -->
+
+output-values:
+  enabled: false
+  from: ""
+
+sort:
+  enabled: true
+  by: name
+
+settings:
+  anchor: true
+  color: true
+  default: true
+  description: false
+  escape: true
+  hide-empty: false
+  html: true
+  indent: 2
+  lockfile: true
+  read-comments: true
+  required: true
+  sensitive: true
+  type: true

.editorconfig

@@ -0,0 +1,12 @@
+[*]
+charset = utf-8
+end_of_line = lf
+indent_size = 2
+indent_style = space
+insert_final_newline = true
+max_line_length = 120
+tab_width = 2
+
+[Makefile]
+indent_style = tab
+tab_width = 4

.gitattributes

@@ -0,0 +1,23 @@
+# Define text file attributes.
+# - Treat them as text.
+# - Ensure no CRLF line-endings, neither on checkout nor on checkin.
+# - Detect whitespace errors.
+#   - Exposed by default in `git diff --color` on the CLI.
+#   - Validate with `git diff --check`.
+#   - Deny applying with `git apply --whitespace=error-all`.
+#   - Fix automatically with `git apply --whitespace=fix`.
+*.md         text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+*.tf         text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+*.yml        text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+*.yaml       text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+Makefile     text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+.githooks/*  text eol=lf whitespace=blank-at-eol,-blank-at-eof,-space-before-tab,tab-in-indent,tabwidth=2
+
+# Define binary file attributes.
+# - Do not treat them as text.
+# - Include binary diff in patches instead of "binary files differ."
+*.gif     -text diff
+*.jpeg    -text diff
+*.jpg     -text diff
+*.png     -text diff
+*.svgz    -text diff

.githooks/pre-commit

@@ -0,0 +1,15 @@
+#!/bin/bash
+#
+# This hook will block a commit if Terraform isn't formatted properly or if README isn't up to date.
+#
+
+[[ -f "$(which terraform)" ]] || (echo 1>&2 'Git Hooks (pre-commit): Terraform not in $PATH, can''t reformat.' && exit 1)
+terraform fmt -check 2>/dev/null || (echo 1>&2 'Git Hooks (pre-commit): Please run `terraform fmt` before committing.' && exit 1)
+
+[[ -f "$(which terraform-docs)" ]] || (echo 1>&2 'Git Hooks (pre-commit): Terraform-docs not in $PATH, can''t update README file.' && exit 1)
+curl -sLo .docs/footer.md https://gist.githubusercontent.com/nventive-devops/7892a2ac9a2cc2ea219dd81796b6ce8b/raw/readme-footer.md
+terraform-docs markdown --config .docs/terraform-docs.yaml --output-check . 1>/dev/null  2>/dev/null || (
+  echo 1>&2 'Git Hooks (pre-commit): Terraform-docs README file is out of date.'
+  echo 1>&2 'Please run `make docs` before committing '
+  exit 1
+)

.github/ISSUE_TEMPLATE.md

@@ -0,0 +1,18 @@
+## Expected Behavior
+
+
+## Actual Behavior
+
+
+## Steps to Reproduce the Problem
+
+1.
+2.
+3.
+
+## Specifications
+
+- OS [e.g. Linux, OSX, WSL, etc]:
+- Version [e.g. 11.5]:
+- Module version:
+- Terraform version:

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,40 @@
+GitHub Issue: #
+<!-- Link to relevant GitHub issue if applicable.
+     All PRs should be associated with an issue -->
+
+## Proposed Changes
+<!-- Please check one or more that apply to this PR. -->
+
+ - [ ] Bug fix
+ - [ ] Feature
+ - [ ] Code style update (formatting)
+ - [ ] Refactoring (no functional changes, no api changes)
+ - [ ] Build or CI related changes
+ - [ ] Documentation content changes
+ - [ ] Other, please describe:
+
+
+## What is the current behavior?
+<!-- Please describe the current behavior that you are modifying,
+     or link to a relevant issue. -->
+
+
+## What is the new behavior?
+<!-- Please describe the new behavior after your modifications. -->
+
+
+## Checklist
+
+Please check that your PR fulfills the following requirements:
+
+- [ ] Documentation has been added/updated.
+- [ ] Automated tests for the changes have been added/updated.
+- [ ] Commits have been squashed (if applicable).
+- [ ] Updated [BREAKING_CHANGES.md](../BREAKING_CHANGES.md) (if you introduced a breaking change).
+
+<!-- If this PR contains a breaking change, please describe the impact
+     and migration path for existing applications below. -->
+
+## Other information
+<!-- Please provide any additional information if necessary -->
+

.github/workflows/conventional-commits.yml

@@ -0,0 +1,21 @@
+name: Conventional Commits
+
+on:
+  pull_request:
+    types:
+      - opened
+      - synchronize
+
+#env:
+#  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+jobs:
+  validate-commits:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Check out code into the Go module directory
+        uses: actions/checkout@v1
+
+      - name: Commitsar check
+        uses: docker://aevea/commitsar

.github/workflows/terraform-actions.yml

@@ -0,0 +1,35 @@
+name: Terraform actions
+
+on:
+  pull_request:
+    types:
+      - opened
+      - synchronize
+
+jobs:
+  terraform-format-check:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          ref: ${{ github.event.pull_request.head.ref }}
+
+      - name: Set up Terraform
+        uses: hashicorp/setup-terraform@v1
+
+      - name: Check Terraform Code Formatting
+        run: terraform fmt -check
+
+      - name: Download footer.md
+        run: curl -sLo .docs/footer.md https://gist.githubusercontent.com/nventive-devops/7892a2ac9a2cc2ea219dd81796b6ce8b/raw/readme-footer.md
+
+      - name: Render terraform docs and push changes back to PR
+        uses: terraform-docs/gh-actions@main
+        with:
+          working-dir: .
+          git-commit-message: "docs: Update README.md (automated action)"
+          config-file: .docs/terraform-docs.yaml
+          output-file: README.md
+          output-method: replace
+          git-push: "true"

.gitignore

@@ -0,0 +1,10 @@
+# IDE
+.idea
+.vscode
+
+# Terraform specific
+.terraform.lock.hcl
+.terraform/
+
+# Temporary files
+.docs/footer.md

Makefile

@@ -0,0 +1,11 @@
+SHELL:=/bin/sh
+.SILENT:
+
+.PHONY: docs hooks
+docs:
+	curl -sLo .docs/footer.md https://gist.githubusercontent.com/nventive-devops/7892a2ac9a2cc2ea219dd81796b6ce8b/raw/readme-footer.md
+	terraform-docs markdown --config .docs/terraform-docs.yaml .
+
+hooks:
+	cp .githooks/pre-commit .git/hooks/pre-commit
+	chmod +x .git/hooks/pre-commit

README.md

@@ -0,0 +1,106 @@
+<!-- BEGIN_TF_DOCS -->
+![nventive](https://nventive-public-assets.s3.amazonaws.com/nventive_logo_github.svg?v=2)
+
+# terraform-aws-acm-certificate-import
+
+[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg?style=flat-square)](LICENSE) [![Latest Release](https://img.shields.io/github/release/nventive/terraform-aws-acm-certificate-import.svg?style=flat-square)](https://github.com/nventive/terraform-aws-acm-certificate-import/releases/latest)
+
+Terraform module to import an existing certificate into ACM.
+
+---
+
+## Examples
+
+**IMPORTANT:** We do not pin modules to versions in our examples because of the difficulty of keeping the versions in
+the documentation in sync with the latest released versions. We highly recommend that in your code you pin the version
+to the exact version you are using so that your infrastructure remains stable, and update versions in a systematic way
+so that they do not catch you by surprise.
+
+```hcl
+module "cert" {
+  source = "nventive/acm-certificate-import/aws"
+  # We recommend pinning every module to a specific version
+  # version = "x.x.x"
+
+  namespace = "eg"
+  stage     = "test"
+  name      = "app"
+
+  private_key_base64       = filebase64("${path.module}/key.pem")
+  certificate_body_base64  = filebase64("${path.module}/cert.pem")
+  certificate_chain_base64 = filebase64("${path.module}/chain.pem")
+}
+```
+## Requirements
+
+| Name | Version |
+|------|---------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 0.13.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 2.0 |
+| <a name="requirement_null"></a> [null](#requirement\_null) | >= 2.0 |
+## Providers
+
+| Name | Version |
+|------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | >= 2.0 |
+## Modules
+
+| Name | Source | Version |
+|------|--------|---------|
+| <a name="module_this"></a> [this](#module\_this) | cloudposse/label/null | 0.25.0 |
+## Resources
+
+| Name | Type |
+|------|------|
+| [aws_acm_certificate.default](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/acm_certificate) | resource |
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| <a name="input_additional_tag_map"></a> [additional\_tag\_map](#input\_additional\_tag\_map) | Additional key-value pairs to add to each map in `tags_as_list_of_maps`. Not added to `tags` or `id`.<br>This is for some rare cases where resources want additional configuration of tags<br>and therefore take a list of maps with tag key, value, and additional configuration. | `map(string)` | `{}` | no |
+| <a name="input_attributes"></a> [attributes](#input\_attributes) | ID element. Additional attributes (e.g. `workers` or `cluster`) to add to `id`,<br>in the order they appear in the list. New attributes are appended to the<br>end of the list. The elements of the list are joined by the `delimiter`<br>and treated as a single ID element. | `list(string)` | `[]` | no |
+| <a name="input_certificate_body_base64"></a> [certificate\_body\_base64](#input\_certificate\_body\_base64) | The certificate's PEM-formatted public key base64-encoded. | `string` | n/a | yes |
+| <a name="input_certificate_chain_base64"></a> [certificate\_chain\_base64](#input\_certificate\_chain\_base64) | The certificate's PEM-formatted chain base64-encoded. | `string` | `""` | no |
+| <a name="input_context"></a> [context](#input\_context) | Single object for setting entire context at once.<br>See description of individual variables for details.<br>Leave string and numeric variables as `null` to use default value.<br>Individual variable settings (non-null) override settings in context object,<br>except for attributes, tags, and additional\_tag\_map, which are merged. | `any` | <pre>{<br>  "additional_tag_map": {},<br>  "attributes": [],<br>  "delimiter": null,<br>  "descriptor_formats": {},<br>  "enabled": true,<br>  "environment": null,<br>  "id_length_limit": null,<br>  "label_key_case": null,<br>  "label_order": [],<br>  "label_value_case": null,<br>  "labels_as_tags": [<br>    "unset"<br>  ],<br>  "name": null,<br>  "namespace": null,<br>  "regex_replace_chars": null,<br>  "stage": null,<br>  "tags": {},<br>  "tenant": null<br>}</pre> | no |
+| <a name="input_delimiter"></a> [delimiter](#input\_delimiter) | Delimiter to be used between ID elements.<br>Defaults to `-` (hyphen). Set to `""` to use no delimiter at all. | `string` | `null` | no |
+| <a name="input_descriptor_formats"></a> [descriptor\_formats](#input\_descriptor\_formats) | Describe additional descriptors to be output in the `descriptors` output map.<br>Map of maps. Keys are names of descriptors. Values are maps of the form<br>`{<br>   format = string<br>   labels = list(string)<br>}`<br>(Type is `any` so the map values can later be enhanced to provide additional options.)<br>`format` is a Terraform format string to be passed to the `format()` function.<br>`labels` is a list of labels, in order, to pass to `format()` function.<br>Label values will be normalized before being passed to `format()` so they will be<br>identical to how they appear in `id`.<br>Default is `{}` (`descriptors` output will be empty). | `any` | `{}` | no |
+| <a name="input_enabled"></a> [enabled](#input\_enabled) | Set to false to prevent the module from creating any resources | `bool` | `null` | no |
+| <a name="input_environment"></a> [environment](#input\_environment) | ID element. Usually used for region e.g. 'uw2', 'us-west-2', OR role 'prod', 'staging', 'dev', 'UAT' | `string` | `null` | no |
+| <a name="input_id_length_limit"></a> [id\_length\_limit](#input\_id\_length\_limit) | Limit `id` to this many characters (minimum 6).<br>Set to `0` for unlimited length.<br>Set to `null` for keep the existing setting, which defaults to `0`.<br>Does not affect `id_full`. | `number` | `null` | no |
+| <a name="input_label_key_case"></a> [label\_key\_case](#input\_label\_key\_case) | Controls the letter case of the `tags` keys (label names) for tags generated by this module.<br>Does not affect keys of tags passed in via the `tags` input.<br>Possible values: `lower`, `title`, `upper`.<br>Default value: `title`. | `string` | `null` | no |
+| <a name="input_label_order"></a> [label\_order](#input\_label\_order) | The order in which the labels (ID elements) appear in the `id`.<br>Defaults to ["namespace", "environment", "stage", "name", "attributes"].<br>You can omit any of the 6 labels ("tenant" is the 6th), but at least one must be present. | `list(string)` | `null` | no |
+| <a name="input_label_value_case"></a> [label\_value\_case](#input\_label\_value\_case) | Controls the letter case of ID elements (labels) as included in `id`,<br>set as tag values, and output by this module individually.<br>Does not affect values of tags passed in via the `tags` input.<br>Possible values: `lower`, `title`, `upper` and `none` (no transformation).<br>Set this to `title` and set `delimiter` to `""` to yield Pascal Case IDs.<br>Default value: `lower`. | `string` | `null` | no |
+| <a name="input_labels_as_tags"></a> [labels\_as\_tags](#input\_labels\_as\_tags) | Set of labels (ID elements) to include as tags in the `tags` output.<br>Default is to include all labels.<br>Tags with empty values will not be included in the `tags` output.<br>Set to `[]` to suppress all generated tags.<br>**Notes:**<br>  The value of the `name` tag, if included, will be the `id`, not the `name`.<br>  Unlike other `null-label` inputs, the initial setting of `labels_as_tags` cannot be<br>  changed in later chained modules. Attempts to change it will be silently ignored. | `set(string)` | <pre>[<br>  "default"<br>]</pre> | no |
+| <a name="input_name"></a> [name](#input\_name) | ID element. Usually the component or solution name, e.g. 'app' or 'jenkins'.<br>This is the only ID element not also included as a `tag`.<br>The "name" tag is set to the full `id` string. There is no tag with the value of the `name` input. | `string` | `null` | no |
+| <a name="input_namespace"></a> [namespace](#input\_namespace) | ID element. Usually an abbreviation of your organization name, e.g. 'eg' or 'cp', to help ensure generated IDs are globally unique | `string` | `null` | no |
+| <a name="input_private_key_base64"></a> [private\_key\_base64](#input\_private\_key\_base64) | The certificate's PEM-formatted private key base64-encoded. | `string` | n/a | yes |
+| <a name="input_regex_replace_chars"></a> [regex\_replace\_chars](#input\_regex\_replace\_chars) | Terraform regular expression (regex) string.<br>Characters matching the regex will be removed from the ID elements.<br>If not set, `"/[^a-zA-Z0-9-]/"` is used to remove all characters other than hyphens, letters and digits. | `string` | `null` | no |
+| <a name="input_stage"></a> [stage](#input\_stage) | ID element. Usually used to indicate role, e.g. 'prod', 'staging', 'source', 'build', 'test', 'deploy', 'release' | `string` | `null` | no |
+| <a name="input_tags"></a> [tags](#input\_tags) | Additional tags (e.g. `{'BusinessUnit': 'XYZ'}`).<br>Neither the tag keys nor the tag values will be modified by this module. | `map(string)` | `{}` | no |
+| <a name="input_tenant"></a> [tenant](#input\_tenant) | ID element \_(Rarely used, not included by default)\_. A customer identifier, indicating who this instance of a resource is for | `string` | `null` | no |
+## Outputs
+
+| Name | Description |
+|------|-------------|
+| <a name="output_arn"></a> [arn](#output\_arn) | The ARN of the certificate. |
+| <a name="output_id"></a> [id](#output\_id) | The ARN of the certificate. |
+## Breaking Changes
+
+Please consult [BREAKING\_CHANGES.md](BREAKING\_CHANGES.md) for more information about version
+history and compatibility.
+
+## Contributing
+
+Please read [CONTRIBUTING.md](CONTRIBUTING.md) for details on the process for
+contributing to this project.
+
+Be mindful of our [Code of Conduct](CODE\_OF\_CONDUCT.md).
+
+## We're hiring
+
+Look for current openings on BambooHR https://nventive.bamboohr.com/careers/
+
+## Stay in touch
+
+[nventive.com](https://nventive.com/) | [Linkedin](https://www.linkedin.com/company/nventive/) | [Instagram](https://www.instagram.com/hellonventive/) | [YouTube](https://www.youtube.com/channel/UCFQyvGEKMO10hEyvCqprp5w) | [Spotify](https://open.spotify.com/show/0lsxfIb6Ttm76jB4wgutob)
+<!-- END_TF_DOCS -->