Create Terraform/OpenTofu configuration for shared resources

[marcelovilla]

Currently, there's a configuration file for shared resources, including the network configuration. I suggest we expand that configuration (and maybe split it into different files) to include other shared resources we'll need across the different environments, such as:

• ECR repositories¹ to store the service images. For now, I think we need two repositories: one for the dashboard and one for the API.
• AWS IAM role to use as authentication in GitHub Actions (GHA). To avoid using long-lived credentials in the GHA workflows, I recommend creating an AWS IAM role with limited permissions, which we can use to authenticate and deploy/update the infrastructure from within GHA.

Footnotes

1. Judging by the deploy GHA workflow, there's probably an existing repository. We can import that into the Terraform/OpenTofu configuration we write to keep everything in the same place. ↩

[leej3]

there's probably an existing repository.

I used docker hub. Switching to ECR is also fine.

For now, I think we need to repositories

I'm assuming you mean images here. Also, to match the development override it would be good to build and push the base image too.

[marcelovilla]

@leej3:

I'm assuming you mean images here. Also, to match the development override it would be good to build and push the base image too.

I mean ECR repositories. Each repository will contain the images of a particular service (e.g., API and dashboard). Each image will be tagged with a git commit hash so we can easily identify what has been deployed and eventually rollback to a previous commit if we ever need to. Regarding pushing the base image, see: #64 (comment)