Initial module commit

Author: Sean Turner

.gitignore

@@ -0,0 +1,49 @@
+# Created by https://www.gitignore.io/api/terraform
+# Edit at https://www.gitignore.io/?templates=terraform
+
+### Terraform ###
+# Local .terraform directories
+**/.terraform/*
+
+# .tfstate files
+*.tfstate
+*.tfstate.*
+
+# Crash log files
+crash.log
+
+# Ignore any .tfvars files that are generated automatically for each Terraform run. Most
+# .tfvars files are managed as part of configuration and so should be included in
+# version control.
+#
+# example.tfvars
+terraform.auto.tfvars
+
+# Ignore override files as they are usually used to override resources locally and so
+# are not checked in
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+
+# Include override files you do wish to add to version control using negated pattern
+# !example_override.tf
+
+# Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan
+# example: *tfplan*
+
+# End of https://www.gitignore.io/api/terraform
+
+# macOS
+*.DS_Store
+
+# lambda archive
+*.zip
+
+# vscode
+**/.vscode/*
+
+**/archive/*
+!**/archive/.keep
+**/bin/*
+!**/bin/.keep

.pre-commit-config.yaml

@@ -0,0 +1,10 @@
+repos:
+  - repo: git://github.com/antonbabenko/pre-commit-terraform
+    rev: v1.47.0
+    hooks:
+      - id: terraform_docs
+      - id: terraform_fmt
+  - repo: git://github.com/pre-commit/pre-commit-hooks
+    rev: v3.4.0
+    hooks:
+      - id: check-merge-conflict

.terraform.lock.hcl

@@ -0,0 +1,105 @@
+# terraform-module-eventbridge-debug-logger
+
+A terraform module to create resources for capturing all eventbridge events for a given service.
+
+## Contributing
+
+Ensure that the pre-commit hooks are installed by running the following command: `pre-commit install`
+
+## Usage example
+
+Full example(s) leveraging this module is contained in the [examples](https://github.com/seanturner026/terraform-module-eventbridge-debug-logger/tree/master/examples/).
+
+**IMPORTANT**: The master branch is used in source just as an example. In your code, do not pin to master because there may be breaking changes between releases. Instead pin to the release tag (e.g. `git@github.com:seanturner026/terraform-module-eventbridge-debug-logger.git?ref=vX.Y.Z`) using one of the [latest releases](https://github.com/seanturner026/terraform-module-eventbridge-debug-logger/releases/).
+
+```hcl
+module "eventbridge_debug_logger" {
+  source = "git@github.com:seanturner026/terraform-module-eventbridge-debug-logger.git"
+
+  name                          = "eventbridge_debug_logger"
+  service_name                  = "ec2"
+  lambda_logs_retention_in_days = 1
+  tags                          = var.tags
+}
+```
+
+The above example module invocation will track all ec2 events. Using a tool like saw to tail cloudwatch logs, the following log events will be written by launching and terminating an EC2 instance.
+
+```
+$ saw watch /aws/lambda/events_debug_logger_ec2 --expand
+[2021-04-17T12:30:43+12:00] START RequestId: 9130fe6d-4a72-460f-87bb-2e3ede273772 Version: $LATEST
+[2021-04-17T12:30:43+12:00] {
+    "account-id": "123456789012",
+    "detail": {
+        "instance-id": "i-0e12345678cdfc123",
+        "state": "pending"
+    },
+    "detail-type": "EC2 Instance State-change Notification",
+    "id": "01d4aadf-a202-ed3e-0464-8bb84910a8ec",
+    "region": "us-east-1",
+    "resources": [
+        "arn:aws:ec2:us-east-1:123456789012:instance/i-0e12345678cdfc123"
+    ],
+    "source": "aws.ec2",
+    "version": "0",
+    "level": "info",
+    "msg": "handled event",
+    "time": "2021-04-17T00:30:43Z"
+}
+[2021-04-17T12:30:43+12:00] END RequestId: 9130fe6d-4a72-460f-87bb-2e3ede273772
+[2021-04-17T12:30:43+12:00] REPORT RequestId: 9130fe6d-4a72-460f-87bb-2e3ede273772	Duration: 0.88 ms	Billed Duration: 1 ms	Memory Size: 128 MB	Max Memory Used: 30 MB	Init Duration: 74.44 ms
+[2021-04-17T12:33:58+12:00] START RequestId: 4c13af9e-3b16-4f8e-b8ac-56f524a6435e Version: $LATEST
+[2021-04-17T12:33:58+12:00] {
+    "account": "123456789012",
+    "detail": {
+        "instance-id": "i-0e12345678cdfc123",
+        "state": "shutting-down"
+    },
+    "detail-type": "EC2 Instance State-change Notification",
+    "fields.time": "2021-04-17T00:33:57Z",
+    "id": "cb3e793e-613b-a733-91e3-b92907d6f9fd",
+    "level": "info",
+    "msg": "handled event",
+    "region": "us-east-1",
+    "resources": [
+        "arn:aws:ec2:us-east-1:123456789012:instance/i-0e12345678cdfc123"
+    ],
+    "source": "aws.ec2",
+    "time": "2021-04-17T00:33:58Z",
+    "version": "0"
+}
+[2021-04-17T12:33:58+12:00] END RequestId: 4c13af9e-3b16-4f8e-b8ac-56f524a6435e
+[2021-04-17T12:33:58+12:00] REPORT RequestId: 4c13af9e-3b16-4f8e-b8ac-56f524a6435e	Duration: 1.14 ms	Billed Duration: 2 ms	Memory Size: 128 MB	Max Memory Used: 31 MB	Init Duration: 61.97 ms
+```
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Requirements
+
+| Name | Version |
+|------|---------|
+| archive | >= 2.0 |
+| aws | >= 3.0 |
+| null | >= 3.0 |
+
+## Providers
+
+| Name | Version |
+|------|---------|
+| archive | >= 2.0 |
+| aws | >= 3.0 |
+| null | >= 3.0 |
+
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| lambda\_logs\_retention\_in\_days | Specifies the number of days you want to retain log events in the specified lambda log group.<br><br>Specifying "0" means logs are permanently retained. | `number` | `1` | no |
+| name | Common name shared between resources. | `string` | n/a | yes |
+| service\_name | Name of the service to create a catch-all eventbridge rule for.<br><br>See variables.tf for a complete list of input options. | `string` | n/a | yes |
+| tags | A map of tags to add to all resources. | `map(string)` | n/a | yes |
+
+## Outputs
+
+No output.
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->

README.md

@@ -0,0 +1,29 @@
+data "null_data_source" "wait_for_lambda_build" {
+  for_each = local.lambdas
+
+  inputs = {
+    lambda_build_id = null_resource.lambda_build[each.key].id
+    source          = "${path.module}/lambdas/bin/${each.key}"
+  }
+}
+
+data "archive_file" "this" {
+  for_each = local.lambdas
+
+  type        = "zip"
+  source_file = data.null_data_source.wait_for_lambda_build[each.key].outputs["source"]
+  output_path = "${path.module}/archive/${each.key}.zip"
+}
+
+
+data "aws_iam_policy_document" "this" {
+  statement {
+    actions = ["sts:AssumeRole"]
+
+    principals {
+      type        = "Service"
+      identifiers = ["lambda.amazonaws.com"]
+    }
+  }
+}
+

data.tf

@@ -0,0 +1,4 @@
+provider "aws" {
+  region  = "us-east-1"
+  profile = "sean"
+}

examples/.terraform.lock.hcl

@@ -0,0 +1,8 @@
+module "eventbridge_debug_logger" {
+  source = "../"
+
+  name                          = "eventbridge_debug_logger"
+  service_name                  = "ec2"
+  lambda_logs_retention_in_days = 1
+  tags                          = var.tags
+}

examples/main.tf

@@ -0,0 +1,4 @@
+tags = {
+  name       = "eventbridge_debug_logger"
+  managed_by = "terraform"
+}

examples/modules.tf

@@ -0,0 +1,4 @@
+variable "tags" {
+  description = "A map of tags to add to all resources."
+  type        = map(string)
+}