feat: add postgres rds module

Author: rohit-ng

main.tf

@@ -0,0 +1,83 @@
+locals {
+  kong_container_image = "kong:3.7.1-ubuntu"
+  name                 = "kong-postgres"
+  db_identifier        = "${local.name}-01"
+  rds_engine           = "postgres"
+  storage_encrypted    = true
+  storage_type         = "gp3"
+
+  postgres = {
+    engine_version       = 16.3
+    engine_family        = "postgres16"
+    major_engine_version = 16
+    port                 = 5432
+  }
+
+  default_tags = {
+    ManagedBy = "Terraform"
+  }
+}
+
+data "aws_vpc" "vpc" {
+  id = var.vpc_id
+}
+
+
+module "postgres-security-group" {
+  source  = "terraform-aws-modules/security-group/aws"
+  version = "~> 5.1.2"
+
+  name        = local.name
+  description = "Allow all traffic within vpc"
+  vpc_id      = var.vpc_id
+
+  ingress_with_cidr_blocks = [
+    {
+      from_port   = 0
+      to_port     = 5432
+      protocol    = "tcp"
+      description = "PostgreSQL access from within VPC"
+      cidr_blocks = data.aws_vpc.vpc.cidr_block
+    },
+  ]
+
+  tags = merge(local.default_tags, var.postgres_sg_tags)
+}
+
+module "kong-rds" {
+  source  = "terraform-aws-modules/rds/aws"
+  version = "~> 6.7.0"
+
+  identifier           = local.db_identifier
+  engine               = local.rds_engine
+  engine_version       = local.postgres.engine_version
+  family               = local.postgres.engine_family
+  major_engine_version = local.postgres.major_engine_version
+  instance_class       = var.rds_instance_class
+
+  storage_encrypted     = local.storage_encrypted
+  storage_type          = local.storage_type
+  allocated_storage     = var.db_allocated_storage
+  max_allocated_storage = var.db_max_allocated_storage
+  multi_az              = var.multi_az
+
+  manage_master_user_password = var.manage_master_user_password
+  db_name                     = var.db_name
+  username                    = var.db_username
+  port                        = local.postgres.port
+  password                    = var.db_password
+
+  backup_retention_period = var.backup_retention_period
+  backup_window           = var.backup_window
+  deletion_protection     = var.deletion_protection
+  maintenance_window      = var.maintenance_window
+
+  vpc_security_group_ids                = [module.postgres-security-group.security_group_id]
+  create_db_subnet_group                = var.create_db_subnet_group
+  subnet_ids                            = var.private_subnet_ids
+  performance_insights_enabled          = var.performance_insights_enabled
+  performance_insights_retention_period = var.performance_insights_retention_period
+
+  tags = merge(local.default_tags, var.rds_db_tags)
+}
+

variables.tf

@@ -0,0 +1,143 @@
+variable "cluster_name" {
+  description = "Name of the cluster"
+  type        = string
+}
+
+variable "private_subnet_ids" {
+  description = "List of private subnet id"
+  type        = list(string)
+}
+
+variable "vpc_id" {
+  description = "The ID of the VPC"
+  type        = string
+}
+
+variable "rds_instance_class" {
+  description = "The instance class to use"
+  type        = string
+  default     = "db.t3.micro"
+}
+
+variable "db_allocated_storage" {
+  description = "The amount of allocated storage in GBs"
+  type        = number
+  default     = 20
+}
+
+variable "db_max_allocated_storage" {
+  description = "The maximum amount of allocated storage in GBs"
+  type        = number
+  default     = 100
+}
+
+variable "manage_master_user_password" {
+  description = "Whether to manage master user password"
+  type        = bool
+  default     = false
+}
+
+variable "backup_retention_period" {
+  description = "The number of days to retain backups"
+  type        = number
+  default     = 1
+}
+
+variable "skip_final_snapshot" {
+  description = "Whether to skip the final snapshot"
+  type        = bool
+  default     = true
+}
+
+variable "deletion_protection" {
+  description = "Whether to enable deletion protection"
+  type        = bool
+  default     = false
+}
+
+variable "create_db_subnet_group" {
+  description = "Whether to create a DB subnet group"
+  type        = bool
+  default     = true
+}
+
+variable "performance_insights_enabled" {
+  description = "Whether to enable performance insights"
+  type        = bool
+  default     = true
+}
+
+variable "performance_insights_retention_period" {
+  description = "The retention period for performance insights"
+  type        = number
+  default     = 7
+}
+
+variable "db_name" {
+  description = "Database name"
+  type        = string
+  default     = "kong"
+}
+
+variable "db_username" {
+  description = "Username for database"
+  type        = string
+  default     = "kong"
+}
+
+variable "db_password" {
+  description = "Username for database"
+  type        = string
+  default     = "defaultpassword"
+}
+
+variable "private_subnet_ids" {
+  description = "List of private subnet id"
+  type        = list(string)
+}
+
+variable "vpc_id" {
+  description = "The ID of the VPC"
+  type        = string
+}
+
+variable "rds_db_tags" {
+  description = "List of tags"
+  type        = map(string)
+  default     = {}
+}
+
+variable "postgres_sg_tags" {
+  description = "List of tags"
+  type        = map(string)
+  default     = {}
+}
+
+variable "multi_az" {
+  description = "Specifies if the RDS instance is multi-AZ"
+  type        = bool
+  default     = false
+}
+
+variable "backup_window" {
+  description = "The daily time range (in UTC) during which automated backups are created if they are enabled"
+  type        = string
+  default     = null
+}
+
+variable "maintenance_window" {
+  description = "The window to perform maintenance in.Syntax:ddd:hh24:mi-ddd:hh24:mi"
+  type        = string
+  default     = null
+}
+
+variable "region" {
+  description = "AWS region"
+  type        = string
+}
+
+variable "postgres_db_name" {
+  description = "Postgres database name"
+  type        = string
+  default     = "kong"
+}