ACM Certificate
Provisions AWS Certificate Manager SSL/TLS certificates with Route53 validation
22 docs tagged with "terraform"
View all tagsADR-028: Parallel 2-Account Topology with IAM Identity Center + Profile-Only Configuration
Decision to build parallel workload and management (Identity Center) accounts in parallel at zero cost (plan/validate); profile-only environment configuration with runtime account discovery via AWS APIs; legacy Terraform module consolidation into canonical submodule in waves; LLM-Docs engine applied to both this repository and private companion documentation repository.
ADR: LLM-Docs for IaC
Adopt compiled LLM documentation for Terraform modules to ensure drift-resistant SSOT and AI-discoverable infrastructure code
Application Load Balancer (ALB)
Provisions an AWS Application Load Balancer with listeners, target groups, and optional WAF integration
AWS Identity Center (SSO)
Provisions AWS Identity Center for centralized user access and multi-account permission management
AWS Transfer Family SFTP Server
Provisions an AWS Transfer Family SFTP server with S3 backend and user management
B2B Workload Account
AWS workload account hosting application infrastructure (VPC, ECS, RDS, S3)
CloudFront Distribution
Provisions an AWS CloudFront CDN distribution with origins, behaviors, and SSL/TLS configuration
Compiled Infrastructure Docs — terraform-aws
Comprehensive reference for all AWS Terraform modules, accounts, and identity architecture compiled from source code and design documentation.
Count vs For Each
When to use count and when to use for_each in Terraform
ECS Cluster
Provisions an AWS ECS cluster with EC2 or Fargate capacity providers and auto-scaling
Elastic File System (EFS)
Provisions an AWS EFS with mount targets, access points, and backup policies
Error: Values Cannot Be Determined Until Apply
Details about computed values can cause `terraform plan` to fail
Identity Plane (L1 Workforce)
IAM Identity Center with Entra ID federation for workforce SSO across AWS accounts
KMS Key
Provisions an AWS KMS master key with key policies, grants, and rotation policies
Management Account
AWS Organizations hub account with IAM Identity Center, security controls, and central governance
S3 Bucket
Creates AWS S3 buckets with versioning, encryption, access logging, and bucket policies
Terraform in Depth
Deep dive into Terraform implementation details and pitfalls
Terraform Tips & Tricks
Some helpful hints for Terraform
VPC
Creates a Virtual Private Cloud with configurable subnets, NAT gateways, and network resources
WAF
Deploys AWS WAFv2 web ACLs with IP sets, rate limiting, and rule management
Web Stack (ALB + CloudFront + WAF)
Provisions a complete web stack: Application Load Balancer, CloudFront distribution, WAF, and Route53 DNS