stupid mistake, deleted chapt 2 code but it didn't work anyway

hazzardr · Feb 11, 2024 · 84845c7 · 84845c7
1 parent 946abf8
commit 84845c7
Show file tree

Hide file tree

Showing 3 changed files with 110 additions and 0 deletions.
diff --git a/chapter-2/main.tf b/chapter-2/main.tf
@@ -9,4 +9,41 @@ resource "aws_s3_bucket" "terraform_state" {
  lifecycle {
  prevent_destroy = true
  }
+}
+
+resource "aws_s3_bucket_versioning" "enabled" {
+ bucket = aws_s3_bucket.terraform_state.id
+ versioning_configuration {
+ status = "Enabled"
+ }
+}
+
+resource "aws_s3_bucket_server_side_encryption_configuration" "default" {
+ bucket = aws_s3_bucket.terraform_state.id
+ rule {
+ apply_server_side_encryption_by_default {
+ sse_algorithm = "AES256"
+ }
+ }
+}
+
+# Not technically necessary since buckets are private by default. But, this stops us
+# from accidentally making it public later (will have pw etc in it)
+resource "aws_s3_bucket_public_access_block" "public_access" {
+ bucket = aws_s3_bucket.terraform_state.id
+
+ block_public_acls = true
+ block_public_policy = true
+ ignore_public_acls = true
+ restrict_public_buckets = true
+}
+
+resource "aws_dynamodb_table" "terraform_locks" {
+ name = "terraform-up-and-running-locks"
+ billing_mode = "PAY_PER_REQUEST"
+ hash_key = "LockID"
+ attribute {
+ name = "LockID"
+ type = "S"
+ }
 }
diff --git a/chapter-3/.terraform.lock.hcl b/chapter-3/.terraform.lock.hcl
diff --git a/chapter-3/main.tf b/chapter-3/main.tf
@@ -0,0 +1,49 @@
+provider "aws" {
+ region = "us-east-2"
+}
+
+resource "aws_s3_bucket" "terraform_state" {
+ bucket = "hazzardr-terraform-up-and-running-state"
+
+ # so we don't accidentally delete remote state with a destroy command
+ lifecycle {
+ prevent_destroy = true
+ }
+}
+
+resource "aws_s3_bucket_versioning" "enabled" {
+ bucket = aws_s3_bucket.terraform_state.id
+ versioning_configuration {
+ status = "Enabled"
+ }
+}
+
+resource "aws_s3_bucket_server_side_encryption_configuration" "default" {
+ bucket = aws_s3_bucket.terraform_state.id
+ rule {
+ apply_server_side_encryption_by_default {
+ sse_algorithm = "AES256"
+ }
+ }
+}
+
+# Not technically necessary since buckets are private by default. But, this stops us
+# from accidentally making it public later (will have pw etc in it)
+resource "aws_s3_bucket_public_access_block" "public_access" {
+ bucket = aws_s3_bucket.terraform_state.id
+
+ block_public_acls = true
+ block_public_policy = true
+ ignore_public_acls = true
+ restrict_public_buckets = true
+}
+
+resource "aws_dynamodb_table" "terraform_locks" {
+ name = "terraform-up-and-running-locks"
+ billing_mode = "PAY_PER_REQUEST"
+ hash_key = "LockID"
+ attribute {
+ name = "LockID"
+ type = "S"
+ }
+}