mirror of https://github.com/ghndrx/terraform-foundation.git synced 2026-02-10 06:45:06 +00:00

Files

Greg Hendrickson 6136cde9bb feat: Terraform Foundation - AWS Landing Zone

Enterprise-grade multi-tenant AWS cloud foundation.

Modules:
- GitHub OIDC for keyless CI/CD authentication
- IAM account settings and security baseline
- AWS Config Rules for compliance
- ABAC (Attribute-Based Access Control)
- SCPs (Service Control Policies)

Features:
- Multi-account architecture
- Cost optimization patterns
- Security best practices
- Comprehensive documentation

Tech: Terraform, AWS Organizations, IAM Identity Center

2026-02-02 02:57:23 +00:00

1.4 KiB

Raw Blame History

Terraform Foundation - Review Status

Last Updated: 2026-02-01 Status: Partially Implemented

Completed Actions ✅

1. Removed Empty Modules (10 modules)

~~account-baseline~~
~~app-account~~
~~identity-center~~
~~ram-share~~
~~scps~~
~~security-groups~~
~~tenant-baseline~~
~~tenant-budget~~
~~tenant-iam~~
~~tenant-vpc~~

2. Added README.md to All Modules

All 21 remaining modules now have documentation:

Usage examples
Input variables table
Outputs table

Remaining Work

Medium Priority

Task	Status
Split variables.tf/outputs.tf	Not started
Add versions.tf	Not started
Add examples/ directories	Not started
Add Terraform tests	Not started

Low Priority

Task	Status
Standardize count→for_each	Not started
Add consistent tagging	Not started
Generate provider lock files	Not started

Current Module Status

Module	Structure	Docs	Ready
github-oidc	✅	✅	✅
Other modules (20)	🟡	✅	🟡

Legend:

✅ Complete
🟡 Partial (works but not AWS IA compliant)
❌ Not ready

Validation Status

All modules pass terraform validate with warnings:

Deprecation warning: aws_region.name (use .id)
Deprecation warning: GuardDuty datasources block

These are cosmetic and do not affect functionality.

1.4 KiB Raw Blame History