config: use aws_ssm to store parameters

author: clarkzjw <[email protected]> 2022-12-11 15:16:17 -0800
committer: clarkzjw <[email protected]> 2022-12-11 15:16:17 -0800
commit: 90564c7d34006223bf2874b729a9af6e1c87c542 (patch)
tree: db2800b00bcc9d52adb0207d6102d6d778c17884 /jinwei.me/infra
parent: 39317f1daab7771105878a4d0051d3d770425e19 (diff)
download: jinwei.me-90564c7d34006223bf2874b729a9af6e1c87c542.tar.gz
2 files changed, 36 insertions, 0 deletions
diff --git a/jinwei.me/infra/cloudflare.tf b/jinwei.me/infra/cloudflare.tf
index 6e9660e..5d81462 100644
--- a/jinwei.me/infra/cloudflare.tf
+++ b/jinwei.me/infra/cloudflare.tf
@@ -50,3 +50,9 @@ resource "cloudflare_tunnel_config" "tunnel_route" {
    }
  }
 }
+resource "aws_ssm_parameter" "cloudflare_tunnel_token" {
+  name  = "/${local.name}/cloudflare/tunnel_token"
+  type  = "SecureString"
+  value = cloudflare_argo_tunnel.tunnel.tunnel_token
+}
diff --git a/jinwei.me/infra/rds.tf b/jinwei.me/infra/rds.tf
index 381868e..3abac21 100644
--- a/jinwei.me/infra/rds.tf
+++ b/jinwei.me/infra/rds.tf
@@ -25,3 +25,33 @@ resource "random_password" "mysql_password" {
  length  = 16
  special = false
 }
+resource "aws_ssm_parameter" "wordpress_db_host" {
+  name  = "/${var.name}/mysql/host"
+  type  = "String"
+  value = aws_db_instance.jinwei-me.address
+}
+resource "aws_ssm_parameter" "wordpress_db_port" {
+  name  = "/${var.name}/mysql/port"
+  type  = "String"
+  value = aws_db_instance.jinwei-me.port
+}
+resource "aws_ssm_parameter" "wordpress_db_name" {
+  name  = "/${local.name}/mysql/name"
+  type  = "String"
+  value = aws_db_instance.jinwei-me.db_name
+}
+resource "aws_ssm_parameter" "wordpress_db_user" {
+  name  = "/${local.name}/mysql/username"
+  type  = "String"
+  value = aws_db_instance.jinwei-me.username
+}
+resource "aws_ssm_parameter" "wordpress_db_password" {
+  name  = "/${local.name}/mysql/password"
+  type  = "SecureString"
+  value = random_password.mysql_password.result
+}
author	clarkzjw <[email protected]>	2022-12-11 15:16:17 -0800
committer	clarkzjw <[email protected]>	2022-12-11 15:16:17 -0800
commit	90564c7d34006223bf2874b729a9af6e1c87c542 (patch)
tree	db2800b00bcc9d52adb0207d6102d6d778c17884 /jinwei.me/infra
parent	39317f1daab7771105878a4d0051d3d770425e19 (diff)
download	jinwei.me-90564c7d34006223bf2874b729a9af6e1c87c542.tar.gz

diff --git a/jinwei.me/infra/cloudflare.tf b/jinwei.me/infra/cloudflare.tf index 6e9660e..5d81462 100644 --- a/jinwei.me/infra/cloudflare.tf +++ b/jinwei.me/infra/cloudflare.tf
@@ -50,3 +50,9 @@ resource "cloudflare_tunnel_config" "tunnel_route" {
50	}	50	}
51	}	51	}
52	}	52	}
		53
		54	resource "aws_ssm_parameter" "cloudflare_tunnel_token" {
		55	name = "/${local.name}/cloudflare/tunnel_token"
		56	type = "SecureString"
		57	value = cloudflare_argo_tunnel.tunnel.tunnel_token
		58	}


diff --git a/jinwei.me/infra/rds.tf b/jinwei.me/infra/rds.tf index 381868e..3abac21 100644 --- a/jinwei.me/infra/rds.tf +++ b/jinwei.me/infra/rds.tf
@@ -25,3 +25,33 @@ resource "random_password" "mysql_password" {
25	length = 16	25	length = 16
26	special = false	26	special = false
27	}	27	}
		28
		29	resource "aws_ssm_parameter" "wordpress_db_host" {
		30	name = "/${var.name}/mysql/host"
		31	type = "String"
		32	value = aws_db_instance.jinwei-me.address
		33	}
		34
		35	resource "aws_ssm_parameter" "wordpress_db_port" {
		36	name = "/${var.name}/mysql/port"
		37	type = "String"
		38	value = aws_db_instance.jinwei-me.port
		39	}
		40
		41	resource "aws_ssm_parameter" "wordpress_db_name" {
		42	name = "/${local.name}/mysql/name"
		43	type = "String"
		44	value = aws_db_instance.jinwei-me.db_name
		45	}
		46
		47	resource "aws_ssm_parameter" "wordpress_db_user" {
		48	name = "/${local.name}/mysql/username"
		49	type = "String"
		50	value = aws_db_instance.jinwei-me.username
		51	}
		52
		53	resource "aws_ssm_parameter" "wordpress_db_password" {
		54	name = "/${local.name}/mysql/password"
		55	type = "SecureString"
		56	value = random_password.mysql_password.result
		57	}