added aws_db_instance & aws_db_parameter_group logic

Author: andrefaria24

.gitignore

@@ -0,0 +1,45 @@
+# our main tfvars file
+backend.tf
+
+## Taken from https://github.com/github/gitignore/blob/main/Terraform.gitignore
+
+# Local .terraform directories
+**/.terraform/*
+
+# .tfstate files
+*.tfstate
+*.tfstate.*
+
+# Crash log files
+crash.log
+crash.*.log
+
+# Exclude all .tfvars files, which are likely to contain sensitive data, such as
+# password, private keys, and other secrets. These should not be part of version
+# control as they are data points which are potentially sensitive and subject
+# to change depending on the environment.
+*.tfvars
+*.tfvars.json
+
+# Ignore override files as they are usually used to override resources locally and so
+# are not checked in
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+
+# Include override files you do wish to add to version control using negated pattern
+# !example_override.tf
+
+# Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan
+# example: *tfplan*
+
+# Ignore CLI configuration files
+.terraformrc
+terraform.rc
+
+**/.terraform
+**/.terraform.lock.hcl
+**/terraform.tfstate
+**/terraform.tfstate.backup
+.DS_Store

main.tf

@@ -2,7 +2,7 @@ provider "aws" {
   region = var.region
 }
 
-data "terrafom_remote_state" "aws-networking" {
+data "terraform_remote_state" "aws-networking" {
   backend = "remote"
 
   config = {
@@ -13,25 +13,44 @@ data "terrafom_remote_state" "aws-networking" {
   }
 }
 
-resource "random_password" "master" {
+resource "random_password" "db_password" {
   length  = 16
   special = true
 }
 
-resource "aws_rds_cluster" "aurora_pg" {
-  cluster_identifier   = "aurora-psql-${var.db_name}"
-  engine               = "aurora-postgresql"
-  master_username      = var.db_admin
-  master_password      = random_password.master.result
-  database_name        = var.db_name
-  db_subnet_group_name = data.terrafom_remote_state.aws-networking.outputs.db_subnet_group_name
-  skip_final_snapshot  = true
+resource "random_string" "random_str" {
+  length  = 6
+  numeric = false
+  special = false
+  upper   = false
 }
 
-resource "aws_rds_cluster_instance" "aurora_pg_instance" {
-  count              = 1
-  identifier         = "aurora-psql-${var.db_name}-instance"
-  cluster_identifier = aws_rds_cluster.aurora_pg.id
-  instance_class     = var.instance_class
-  engine             = aws_rds_cluster.aurora_pg.engine
+resource "aws_db_parameter_group" "db_param_group" {
+  name   = "${var.db_name}-${random_string.random_str.id}"
+  family = "postgres16"
+
+  parameter {
+    name  = "log_connections"
+    value = "1"
+  }
+
+  lifecycle {
+    create_before_destroy = true
+  }
+}
+
+resource "aws_db_instance" "db" {
+  identifier             = "${var.db_name}-${random_string.random_str.id}"
+  instance_class         = "db.t3.micro"
+  allocated_storage      = 5
+  apply_immediately      = true
+  engine                 = "postgres"
+  engine_version         = "16.6"
+  username               = var.db_admin
+  password               = resource.random_password.db_password.result
+  db_subnet_group_name   = data.terraform_remote_state.aws-networking.outputs.db_subnet_group_name
+  vpc_security_group_ids = [data.terraform_remote_state.aws-networking.outputs.psql_security_group_id.id]
+  parameter_group_name   = aws_db_parameter_group.db_param_group.name
+  publicly_accessible    = true
+  skip_final_snapshot    = true
 }

variables.tf

@@ -26,7 +26,7 @@ variable "instance_class" {
   description = "Instance Size"
   type        = string
   validation {
-    condition     = contains(["db.r6g.large", "db.r6g.xlarge", "db.r6g.2xlarge"], var.instance_class)
-    error_message = "Supported sizes: db.r6g.large, db.r6g.xlarge, db.r6g.2xlarge"
+    condition     = contains(["db.t3.micro"], var.instance_class)
+    error_message = "Supported sizes: db.t3.micro"
   }
 }