Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RDS - DB #14

Open
starkmatt opened this issue Apr 10, 2020 · 1 comment
Open

RDS - DB #14

starkmatt opened this issue Apr 10, 2020 · 1 comment
Assignees
@starkmatt
Labels
terraform-code

Comments

@starkmatt
Copy link
Contributor

starkmatt commented Apr 10, 2020
edited by kikobr82
Loading

Objectives:

  • create a RDS Aurora MySql database
  • use version Aurora (MySQL 5.7) 2.07.2
  • serverless version
    • smallest instance size available if you have issues with serverless
  • no need for aurora replica
  • use same username/password that you setup the systems manager parameters
  • use custom vpc from network stack
    • private subnets
    • security groups with only required permissions for instances on private subnet
  • backup just one day
  • encryption using aws managed key
  • disable performance insights
  • disable enhanced monitoring
  • no need for IAM authentication (wordpress does not support it)
  • disable deletion protection

Acceptance Criteria:
- from an instance on private subnet:
- I can run a wordpress container image with aurora secrets and be able to access it
- I CAN'T access the database from public instances
- terraform code SHOULD NOT HAVE ANY SECRETS COMMITED
@starkmatt
Copy link
Contributor Author

Created a PR Code for this DB.
All seems to be working from my end

#15

@kikobr82 kikobr82 changed the title IaC - Aurora DB RDS - DB Apr 15, 2020
@kikobr82 kikobr82 removed the research label Apr 15, 2020
@faria-marcio faria-marcio mentioned this issue Apr 18, 2020
Merged
@starkmatt starkmatt mentioned this issue Apr 18, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@starkmatt starkmatt

Labels
terraform-code
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kikobr82 @starkmatt