mirror of
https://github.com/ghndrx/terraform-foundation.git
synced 2026-02-10 06:45:06 +00:00
Greg Hendrickson
6136cde9bb
Enterprise-grade multi-tenant AWS cloud foundation. Modules: - GitHub OIDC for keyless CI/CD authentication - IAM account settings and security baseline - AWS Config Rules for compliance - ABAC (Attribute-Based Access Control) - SCPs (Service Control Policies) Features: - Multi-account architecture - Cost optimization patterns - Security best practices - Comprehensive documentation Tech: Terraform, AWS Organizations, IAM Identity Center
39 lines
869 B
Markdown
39 lines
869 B
Markdown
# tenant-baseline
|
|
|
|
Terraform module for AWS landing zone pattern.
|
|
|
|
Apply tenant-specific baseline for multi-tenant architectures.
|
|
|
|
## Planned Features
|
|
|
|
- [ ] Tenant-specific IAM roles with boundaries
|
|
- [ ] Tenant budget alerts
|
|
- [ ] Tenant tagging enforcement
|
|
- [ ] Dedicated or shared VPC networking
|
|
- [ ] Cost allocation tag setup
|
|
|
|
## Planned Usage
|
|
|
|
```hcl
|
|
module "tenant" {
|
|
source = "../modules/tenant-baseline"
|
|
|
|
tenant_name = "acme-corp"
|
|
tenant_id = "acme"
|
|
environment = "prod"
|
|
cost_center = "CC-12345"
|
|
owner_email = "admin@acme.com"
|
|
budget_limit = 500
|
|
|
|
# Dedicated VPC (optional)
|
|
vpc_config = {
|
|
cidr = "10.100.0.0/16"
|
|
azs = ["us-east-1a", "us-east-1b"]
|
|
private_subnets = ["10.100.1.0/24", "10.100.2.0/24"]
|
|
public_subnets = ["10.100.101.0/24", "10.100.102.0/24"]
|
|
}
|
|
|
|
tags = local.tags
|
|
}
|
|
```
|