HC-vault-on-aws-FORK/ec2-launch-template.tf

# EC2 Launch Template
resource "aws_launch_template" "vault_instance" {
  name_prefix = "${var.main_project_tag}-lt-"
  image_id = var.use_latest_ami ? data.aws_ssm_parameter.latest_ami.value : var.ami_id
  instance_type = var.vault_instance_type
  key_name = var.ec2_key_pair_name
  vpc_security_group_ids = [aws_security_group.vault_instance.id]

  iam_instance_profile {
    arn = aws_iam_instance_profile.vault_instance_profile.arn
  }

  tag_specifications {
    resource_type = "instance"

    tags = merge(
      { "Name" = "${var.main_project_tag}-instance" },
      { "Project" = var.main_project_tag }
    )
  }

  tag_specifications {
    resource_type = "volume"
    
    tags = merge(
      { "Name" = "${var.main_project_tag}-volume" },
      { "Project" = var.main_project_tag }
    )
  }

  tags = merge(
    { "Name" = "${var.main_project_tag}-lt" },
    { "Project" = var.main_project_tag }
  )

  user_data = base64encode(templatefile("${path.module}/files/userdata_template.sh", {
    VAULT_VERSION = var.vault_version
    VAULT_CLUSTER_NAME = var.main_project_tag
    VAULT_DNS = var.domain_name
    VAULT_KMS_KEY_ID = aws_kms_key.seal.key_id
    VAULT_CLUSTER_REGION = data.aws_region.current.name
    VAULT_DYNAMODB_TABLE = var.dynamodb_table_name # dynamodb resource doesn't return name....
    VAULT_S3_BUCKET_NAME = aws_s3_bucket.vault_data.id
  }))
}
launch template and auto scaling group 2020-04-14 01:31:14 +00:00			`# EC2 Launch Template`
			`resource "aws_launch_template" "vault_instance" {`
			`name_prefix = "${var.main_project_tag}-lt-"`
Fixing ami id, porting to debian 2024-02-29 18:29:13 +00:00			`image_id = var.use_latest_ami ? data.aws_ssm_parameter.latest_ami.value : var.ami_id`
launch template and auto scaling group 2020-04-14 01:31:14 +00:00			`instance_type = var.vault_instance_type`
			`key_name = var.ec2_key_pair_name`
			`vpc_security_group_ids = [aws_security_group.vault_instance.id]`

			`iam_instance_profile {`
			`arn = aws_iam_instance_profile.vault_instance_profile.arn`
			`}`

			`tag_specifications {`
			`resource_type = "instance"`

			`tags = merge(`
			`{ "Name" = "${var.main_project_tag}-instance" },`
			`{ "Project" = var.main_project_tag }`
			`)`
			`}`

			`tag_specifications {`
			`resource_type = "volume"`

			`tags = merge(`
			`{ "Name" = "${var.main_project_tag}-volume" },`
			`{ "Project" = var.main_project_tag }`
			`)`
			`}`

			`tags = merge(`
			`{ "Name" = "${var.main_project_tag}-lt" },`
			`{ "Project" = var.main_project_tag }`
			`)`

rename user data template and output vault creds script 2020-04-15 01:54:11 +00:00			`user_data = base64encode(templatefile("${path.module}/files/userdata_template.sh", {`
launch template and auto scaling group 2020-04-14 01:31:14 +00:00			`VAULT_VERSION = var.vault_version`
			`VAULT_CLUSTER_NAME = var.main_project_tag`
			`VAULT_DNS = var.domain_name`
			`VAULT_KMS_KEY_ID = aws_kms_key.seal.key_id`
			`VAULT_CLUSTER_REGION = data.aws_region.current.name`
			`VAULT_DYNAMODB_TABLE = var.dynamodb_table_name # dynamodb resource doesn't return name....`
			`VAULT_S3_BUCKET_NAME = aws_s3_bucket.vault_data.id`
			`}))`
			`}`