Skip to content
/ aws-ecs-infrastructure Public template

This repository contains Terraform configurations for deploying a scalable AWS ECS

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DFanso/aws-ecs-infrastructure

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
environments
environments
 
 
shared-services
shared-services
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

AWS ECS Infrastructure

This repository contains Terraform configurations for deploying a scalable AWS ECS (Elastic Container Service) infrastructure. The infrastructure is divided into two main components: shared services (shared resources) and environments (environment-specific resources).

Project Structure

.
├── shared-services/      # Shared infrastructure resources
│   ├── alb.tf           # Application Load Balancer configuration
│   ├── certificate.tf   # SSL/TLS certificate management
│   ├── ecr.tf          # Elastic Container Registry setup
│   ├── iam.tf          # IAM roles and policies
│   ├── vpc.tf          # VPC and networking configuration
│   └── security_groups.tf # Security group definitions
│
└── environments/        # Environment-specific configurations
    ├── modules/        # Reusable Terraform modules
    │   └── ecs-service/ # ECS service module
    └── dev/           # Development environment
        ├── backend.tf  # Backend service configuration
        └── main.tf     # Main Terraform configuration

Infrastructure Components

Shared Services Layer

  • VPC: Multi-AZ setup with public and private subnets
  • Application Load Balancer: HTTPS-enabled with TLS 1.3
  • ECR Repositories: Automated image scanning and lifecycle policies
  • SSL Certificates: Managed through AWS Certificate Manager
  • Security Groups: Controlled network access
  • IAM Roles: Service-specific permissions

Environments Layer (Development Environment)

  • Backend Service:
    • Container Port: 3000
    • Resource Allocation: 256 CPU units, 512MB memory
    • Auto-scaling enabled
    • Environment-specific domain configuration
    • Integration with shared ALB and VPC

Prerequisites

  • Terraform >= 1.0.0
  • AWS CLI configured
  • Access to AWS S3 bucket: ecs-dfanso for state management

Deployment Instructions

1. Deploy Shared Services Layer

cd shared-services
cp terraform.tfvars.example terraform.tfvars
# Update terraform.tfvars with your values
terraform init
terraform apply

2. Deploy Development Environment

cd environments/dev
cp terraform.tfvars.example terraform.tfvars
# Update terraform.tfvars with your values
terraform init
terraform apply

State Management

  • Shared services state: s3://ecs-dfanso/shared-services/terraform.tfstate
  • Dev environment state: s3://ecs-dfanso/environments/dev/terraform.tfstate

Security Features

  • HTTPS-only communication
  • Private subnets for container workloads
  • Automated container image scanning
  • VPC Flow Logs enabled
  • TLS 1.3 with modern cipher suites

Monitoring

  • Container insights enabled
  • CloudWatch logging
  • Auto-scaling based on resource metrics

Required Variables

Check terraform.tfvars.example in each directory for required variables:

  • AWS region and profile
  • Project name
  • VPC CIDR ranges
  • Domain configurations
  • Container settings

Notes

  • All infrastructure is managed through Terraform
  • State files are encrypted in S3
  • Development environment uses shared infrastructure from shared services layer

About

This repository contains Terraform configurations for deploying a scalable AWS ECS

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

1.0 Latest
Dec 6, 2024

Languages