Add instance dependency on IGW (#64)

Author: Joshua Timmons

examples/hcp-ec2-demo/main.tf

@@ -9,12 +9,12 @@ module "vpc" {
   source  = "terraform-aws-modules/vpc/aws"
   version = "3.10.0"
 
-  name                 = "${var.cluster_id}-vpc"
-  cidr                 = "10.0.0.0/16"
   azs                  = data.aws_availability_zones.available.names
-  public_subnets       = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
-  private_subnets      = []
+  cidr                 = "10.0.0.0/16"
   enable_dns_hostnames = true
+  name                 = "${var.cluster_id}-vpc"
+  private_subnets      = []
+  public_subnets       = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
 }
 
 resource "hcp_hvn" "main" {
@@ -26,7 +26,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = module.vpc.vpc_id
@@ -51,27 +51,30 @@ resource "tls_private_key" "ssh" {
 }
 
 resource "aws_key_pair" "hcp_ec2" {
-  count      = var.ssh ? 1 : 0
-  key_name   = "hcp-ec2-key"
+  count = var.ssh ? 1 : 0
+
   public_key = tls_private_key.ssh.public_key_openssh
+  key_name   = "hcp-ec2-key"
 }
 
 resource "local_file" "ssh_key" {
-  count           = var.ssh ? 1 : 0
-  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
+  count = var.ssh ? 1 : 0
+
   content         = tls_private_key.ssh.private_key_pem
   file_permission = "400"
+  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
 }
 
 module "aws_ec2_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ec2-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
   client_ca_file           = hcp_consul_cluster.main.consul_ca_file
   client_config_file       = hcp_consul_cluster.main.consul_config_file
   consul_version           = hcp_consul_cluster.main.consul_version
+  igw_id                   = module.vpc.igw_id
   install_demo_app         = var.install_demo_app
   root_token               = hcp_consul_cluster_root_token.token.secret_id
   security_group_id        = module.aws_hcp_consul.security_group_id

examples/hcp-ecs-demo/main.tf

@@ -28,7 +28,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = module.vpc.vpc_id
@@ -49,7 +49,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "aws_ecs_cluster" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ecs-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
@@ -60,6 +60,7 @@ module "aws_ecs_cluster" {
   consul_url               = hcp_consul_cluster.main.consul_private_endpoint_url
   consul_version           = substr(hcp_consul_cluster.main.consul_version, 1, -1)
   datacenter               = hcp_consul_cluster.main.datacenter
+  igw_id                   = module.vpc.igw_id
   private_subnet_ids       = module.vpc.private_subnets
   public_subnet_ids        = module.vpc.public_subnets
   region                   = var.vpc_region

examples/hcp-eks-demo/main.tf

@@ -63,7 +63,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn                = hcp_hvn.main
   vpc_id             = module.vpc.vpc_id
@@ -85,7 +85,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "eks_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-eks-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   boostrap_acl_token    = hcp_consul_cluster_root_token.token.secret_id
   cluster_id            = hcp_consul_cluster.main.cluster_id
@@ -105,7 +105,7 @@ module "eks_consul_client" {
 module "demo_app" {
   count   = var.install_demo_app ? 1 : 0
   source  = "hashicorp/hcp-consul/aws//modules/k8s-demo-app"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   depends_on = [module.eks_consul_client]
 }

examples/hcp-eks-demo/variables.tf

@@ -4,16 +4,10 @@ variable "cluster_id" {
   default     = "cluster-eks-demo"
 }
 
-variable "vpc_region" {
-  type        = string
-  description = "The AWS region to create resources in"
-  default     = "us-west-2"
-}
-
-variable "hvn_region" {
+variable "hvn_cidr_block" {
   type        = string
-  description = "The HCP region to create resources in"
-  default     = "us-west-2"
+  description = "The CIDR range to create the HCP HVN with"
+  default     = "172.25.32.0/20"
 }
 
 variable "hvn_id" {
@@ -22,16 +16,10 @@ variable "hvn_id" {
   default     = "cluster-eks-demo-hvn"
 }
 
-variable "hvn_cidr_block" {
-  type        = string
-  description = "The CIDR range to create the HCP HVN with"
-  default     = "172.25.32.0/20"
-}
-
-variable "tier" {
+variable "hvn_region" {
   type        = string
-  description = "The HCP Consul tier to use when creating a Consul cluster"
-  default     = "development"
+  description = "The HCP region to create resources in"
+  default     = "us-west-2"
 }
 
 variable "install_demo_app" {
@@ -45,3 +33,15 @@ variable "install_eks_cluster" {
   description = "Choose if you want an eks cluster to be provisioned"
   default     = true
 }
+
+variable "tier" {
+  type        = string
+  description = "The HCP Consul tier to use when creating a Consul cluster"
+  default     = "development"
+}
+
+variable "vpc_region" {
+  type        = string
+  description = "The AWS region to create resources in"
+  default     = "us-west-2"
+}

hcp-ui-templates/ec2-existing-vpc/main.tf

@@ -45,7 +45,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = local.vpc_id
@@ -70,27 +70,30 @@ resource "tls_private_key" "ssh" {
 }
 
 resource "aws_key_pair" "hcp_ec2" {
-  count      = local.ssh ? 1 : 0
-  key_name   = "hcp-ec2-key"
+  count = local.ssh ? 1 : 0
+
   public_key = tls_private_key.ssh.public_key_openssh
+  key_name   = "hcp-ec2-key"
 }
 
 resource "local_file" "ssh_key" {
-  count           = local.ssh ? 1 : 0
-  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
+  count = local.ssh ? 1 : 0
+
   content         = tls_private_key.ssh.private_key_pem
   file_permission = "400"
+  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
 }
 
 module "aws_ec2_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ec2-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
   client_ca_file           = hcp_consul_cluster.main.consul_ca_file
   client_config_file       = hcp_consul_cluster.main.consul_config_file
   consul_version           = hcp_consul_cluster.main.consul_version
+  igw_id                   = module.vpc.igw_id
   install_demo_app         = local.install_demo_app
   root_token               = hcp_consul_cluster_root_token.token.secret_id
   security_group_id        = module.aws_hcp_consul.security_group_id

hcp-ui-templates/ec2/main.tf

@@ -43,12 +43,12 @@ module "vpc" {
   source  = "terraform-aws-modules/vpc/aws"
   version = "3.10.0"
 
-  name                 = "${local.cluster_id}-vpc"
-  cidr                 = "10.0.0.0/16"
   azs                  = data.aws_availability_zones.available.names
-  public_subnets       = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
-  private_subnets      = []
+  cidr                 = "10.0.0.0/16"
   enable_dns_hostnames = true
+  name                 = "${local.cluster_id}-vpc"
+  private_subnets      = []
+  public_subnets       = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
 }
 
 resource "hcp_hvn" "main" {
@@ -60,7 +60,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = module.vpc.vpc_id
@@ -85,27 +85,30 @@ resource "tls_private_key" "ssh" {
 }
 
 resource "aws_key_pair" "hcp_ec2" {
-  count      = local.ssh ? 1 : 0
-  key_name   = "hcp-ec2-key"
+  count = local.ssh ? 1 : 0
+
   public_key = tls_private_key.ssh.public_key_openssh
+  key_name   = "hcp-ec2-key"
 }
 
 resource "local_file" "ssh_key" {
-  count           = local.ssh ? 1 : 0
-  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
+  count = local.ssh ? 1 : 0
+
   content         = tls_private_key.ssh.private_key_pem
   file_permission = "400"
+  filename        = "${path.module}/${aws_key_pair.hcp_ec2[0].key_name}.pem"
 }
 
 module "aws_ec2_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ec2-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
   client_ca_file           = hcp_consul_cluster.main.consul_ca_file
   client_config_file       = hcp_consul_cluster.main.consul_config_file
   consul_version           = hcp_consul_cluster.main.consul_version
+  igw_id                   = module.vpc.igw_id
   install_demo_app         = local.install_demo_app
   root_token               = hcp_consul_cluster_root_token.token.secret_id
   security_group_id        = module.aws_hcp_consul.security_group_id

hcp-ui-templates/ecs-existing-vpc/main.tf

@@ -45,7 +45,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = local.vpc_id
@@ -66,7 +66,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "aws_ecs_cluster" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ecs-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
@@ -77,6 +77,7 @@ module "aws_ecs_cluster" {
   consul_url               = hcp_consul_cluster.main.consul_private_endpoint_url
   consul_version           = substr(hcp_consul_cluster.main.consul_version, 1, -1)
   datacenter               = hcp_consul_cluster.main.datacenter
+  igw_id                   = module.vpc.igw_id
   private_subnet_ids       = [local.private_subnet1, local.private_subnet2]
   public_subnet_ids        = [local.public_subnet1, local.public_subnet2]
   region                   = local.vpc_region

hcp-ui-templates/ecs/main.tf

@@ -60,7 +60,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn             = hcp_hvn.main
   vpc_id          = module.vpc.vpc_id
@@ -81,7 +81,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "aws_ecs_cluster" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-ecs-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   allowed_http_cidr_blocks = ["0.0.0.0/0"]
   allowed_ssh_cidr_blocks  = ["0.0.0.0/0"]
@@ -92,6 +92,7 @@ module "aws_ecs_cluster" {
   consul_url               = hcp_consul_cluster.main.consul_private_endpoint_url
   consul_version           = substr(hcp_consul_cluster.main.consul_version, 1, -1)
   datacenter               = hcp_consul_cluster.main.datacenter
+  igw_id                   = module.vpc.igw_id
   private_subnet_ids       = module.vpc.private_subnets
   public_subnet_ids        = module.vpc.public_subnets
   region                   = local.vpc_region

hcp-ui-templates/eks-existing-vpc/main.tf

@@ -109,7 +109,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn                = hcp_hvn.main
   vpc_id             = local.vpc_id
@@ -131,7 +131,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "eks_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-eks-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   boostrap_acl_token    = hcp_consul_cluster_root_token.token.secret_id
   cluster_id            = hcp_consul_cluster.main.cluster_id
@@ -151,7 +151,7 @@ module "eks_consul_client" {
 module "demo_app" {
   count   = local.install_demo_app ? 1 : 0
   source  = "hashicorp/hcp-consul/aws//modules/k8s-demo-app"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   depends_on = [module.eks_consul_client]
 }

hcp-ui-templates/eks/main.tf

@@ -126,7 +126,7 @@ resource "hcp_hvn" "main" {
 
 module "aws_hcp_consul" {
   source  = "hashicorp/hcp-consul/aws"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   hvn                = hcp_hvn.main
   vpc_id             = module.vpc.vpc_id
@@ -148,7 +148,7 @@ resource "hcp_consul_cluster_root_token" "token" {
 
 module "eks_consul_client" {
   source  = "hashicorp/hcp-consul/aws//modules/hcp-eks-client"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   boostrap_acl_token    = hcp_consul_cluster_root_token.token.secret_id
   cluster_id            = hcp_consul_cluster.main.cluster_id
@@ -168,7 +168,7 @@ module "eks_consul_client" {
 module "demo_app" {
   count   = local.install_demo_app ? 1 : 0
   source  = "hashicorp/hcp-consul/aws//modules/k8s-demo-app"
-  version = "~> 0.8.6"
+  version = "~> 0.8.7"
 
   depends_on = [module.eks_consul_client]
 }