42 lines
934 B
HCL
42 lines
934 B
HCL
# Production Environment Configuration
|
|
# High availability and security
|
|
|
|
aws_region = "us-east-1"
|
|
environment = "production"
|
|
project_name = "myapp"
|
|
|
|
# VPC
|
|
vpc_cidr = "10.0.0.0/16"
|
|
enable_nat_gateway = true
|
|
single_nat_gateway = false # HA - NAT per AZ
|
|
|
|
# EC2 / ASG
|
|
instance_type = "t3.large"
|
|
asg_min_size = 3
|
|
asg_max_size = 20
|
|
asg_desired_capacity = 3
|
|
|
|
# ALB
|
|
enable_alb_deletion_protection = true
|
|
|
|
# RDS
|
|
db_instance_class = "db.r5.xlarge"
|
|
db_allocated_storage = 500
|
|
db_username = "admin"
|
|
db_password = "USE_AWS_SECRETS_MANAGER" # DO NOT COMMIT REAL PASSWORD!
|
|
db_multi_az = true
|
|
db_backup_retention_period = 30
|
|
|
|
# Route53
|
|
create_route53_zone = true
|
|
domain_name = "example.com"
|
|
subdomain = "app"
|
|
|
|
# Monitoring
|
|
alert_email_addresses = [
|
|
"devops-oncall@example.com",
|
|
"alerts@example.com"
|
|
]
|
|
|
|
# Cost: ~$500-1000/month
|