Infrastructure definition for CI/CD environments.
Contains the eesources that require persistence or have lifecycle separate from infra. Stored in a separate state on Terraform Cloud.
Contents:
- vpc
- ECR repos
- Shared EFS filesystem
- RDS PostgreSQL
See base/*.auto.tfvars for the actual values being used right now.
Given a vpc cidr of 10.91.0.0/16, we create,
- a /24 private subnet per az
- a /24 public subnet per az
- a nat gw for internet access from the private subnets
- igw for the public subnets
Registries are created with mutable tags and no automated scanning.
Contains the ephemeral components. In theory, this could be deleted and re-created with no data loss. Imports the state from as a remote state.
Adds a bastion host in the public subnet with alok's key. The EFS filesystem are mounted here.
DependencyTrack in ECS. It uses the shared RDS instance from . Available at https://deptrack.dev.tyk.technology.
OSS version deployed on ECS on EC2. Available at https://windmill.dev.tyk.technology.