Added public dns feature

Author: RussellGilmore

README.md

@@ -12,8 +12,50 @@ A EC2 module module designed to be practical for casual use.
 4. SSM and S3 Access Permissions for access and ease of use
 5. Creates Key for SSH Access
 6. Dynamically Create Ingress Security Rules
-
-Contains a useful scripts for setting up AWS CLI for both SUSE and Ubuntu Linux
+7. Provision a Public DNS record for the Red Instance
+
+Contains a useful scripts for setting up AWS CLI for both SUSE and Ubuntu Linux.
+
+```bash
+#!/bin/bash
+
+# Install AWS CLI v2 on SUSE and Ubuntu Linux (x86_64 and arm)
+
+# Check the Linux distribution
+if [[ -f /etc/os-release ]]; then
+  source /etc/os-release
+  if [[ $ID == "ubuntu" ]]; then
+    # Update Ubuntu and install unzip
+    sudo apt update
+    sudo apt upgrade -y
+    sudo apt install -y unzip
+  elif [[ $ID == "suse" ]]; then
+    # Update SUSE and install unzip
+    sudo zypper refresh
+    sudo zypper update -y
+    sudo zypper install -y unzip
+  else
+    echo "Unsupported Linux distribution: $ID"
+    exit 1
+  fi
+else
+  echo "Unable to determine Linux distribution"
+  exit 1
+fi
+
+# Check the architecture
+if [[ $(uname -m) == "x86_64" ]]; then
+  # Install AWS CLI for x86_64
+  curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
+  unzip awscliv2.zip
+  sudo ./aws/install
+else
+  # Install AWS CLI for arm
+  curl "https://awscli.amazonaws.com/awscli-exe-linux-aarch64.zip" -o "awscliv2.zip"
+  unzip awscliv2.zip
+  sudo ./aws/install
+fi
+```
 
 <!-- prettier-ignore-start -->
 <!-- BEGIN_TF_DOCS -->
@@ -48,6 +90,7 @@ No modules.
 | [aws_instance.red-instance](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/instance) | resource |
 | [aws_internet_gateway.main](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/internet_gateway) | resource |
 | [aws_key_pair.red_key](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/key_pair) | resource |
+| [aws_route53_record.red_instance_dns](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/route53_record) | resource |
 | [aws_route_table.public](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/route_table) | resource |
 | [aws_route_table_association.public](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/route_table_association) | resource |
 | [aws_security_group.allow_ssh](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/resources/security_group) | resource |
@@ -56,6 +99,7 @@ No modules.
 | [local_file.private_key_pem](https://registry.terraform.io/providers/hashicorp/local/latest/docs/resources/file) | resource |
 | [tls_private_key.red_private_key](https://registry.terraform.io/providers/hashicorp/tls/latest/docs/resources/private_key) | resource |
 | [aws_ami.red_ami](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/data-sources/ami) | data source |
+| [aws_route53_zone.zone](https://registry.terraform.io/providers/hashicorp/aws/5.57.0/docs/data-sources/route53_zone) | data source |
 
 ## Inputs
 
@@ -65,9 +109,12 @@ No modules.
 | <a name="input_allocate_eip"></a> [allocate\_eip](#input\_allocate\_eip) | Controls whether an Elastic IP should be allocated | `bool` | `true` | no |
 | <a name="input_ami_name"></a> [ami\_name](#input\_ami\_name) | The name of the AMI to use for the instance | `string` | `"ubuntu/images/hvm-ssd-gp3/ubuntu-noble-24.04-amd64-server-20240701.1"` | no |
 | <a name="input_ami_owner"></a> [ami\_owner](#input\_ami\_owner) | The owner of the AMI to use for the instance | `string` | `"099720109477"` | no |
+| <a name="input_apex_domain"></a> [apex\_domain](#input\_apex\_domain) | The apex domain to use for the public DNS record | `string` | `""` | no |
 | <a name="input_create_vpc"></a> [create\_vpc](#input\_create\_vpc) | Controls whether networking resources should be created for public exposed server | `bool` | `true` | no |
 | <a name="input_disable_api_stop"></a> [disable\_api\_stop](#input\_disable\_api\_stop) | Controls whether API stop is disabled | `bool` | `false` | no |
 | <a name="input_disable_api_termination"></a> [disable\_api\_termination](#input\_disable\_api\_termination) | Controls whether API termination is disabled | `bool` | `false` | no |
+| <a name="input_dns_name"></a> [dns\_name](#input\_dns\_name) | The DNS name to use for the public DNS record | `string` | `""` | no |
+| <a name="input_enable_public_dns"></a> [enable\_public\_dns](#input\_enable\_public\_dns) | Controls whether a public DNS record should be created | `bool` | `false` | no |
 | <a name="input_enable_s3_bucket_policy"></a> [enable\_s3\_bucket\_policy](#input\_enable\_s3\_bucket\_policy) | Controls whether an S3 bucket policy should be attached to the instance role | `bool` | `false` | no |
 | <a name="input_ingress_rules"></a> [ingress\_rules](#input\_ingress\_rules) | List of ingress rules | <pre>list(object({<br>    from_port   = number<br>    to_port     = number<br>    protocol    = string<br>    cidr_blocks = list(string)<br>  }))</pre> | <pre>[<br>  {<br>    "cidr_blocks": [<br>      "0.0.0.0/0"<br>    ],<br>    "from_port": 22,<br>    "protocol": "tcp",<br>    "to_port": 22<br>  }<br>]</pre> | no |
 | <a name="input_instance_type"></a> [instance\_type](#input\_instance\_type) | The instance type to use for the instance | `string` | `"t2.micro"` | no |
@@ -86,6 +133,7 @@ No modules.
 | <a name="output_key_fingerprint"></a> [key\_fingerprint](#output\_key\_fingerprint) | The fingerprint of the key pair |
 | <a name="output_key_name"></a> [key\_name](#output\_key\_name) | The name of the key pair |
 | <a name="output_private_key_path"></a> [private\_key\_path](#output\_private\_key\_path) | The path to the private key file |
+| <a name="output_public_dns"></a> [public\_dns](#output\_public\_dns) | The public DNS name of the instance |
 | <a name="output_public_ip"></a> [public\_ip](#output\_public\_ip) | The public IP address of the instance |
 | <a name="output_subnet_id"></a> [subnet\_id](#output\_subnet\_id) | The ID of the created subnet |
 | <a name="output_vpc_id"></a> [vpc\_id](#output\_vpc\_id) | The ID of the created VPC |

dev/disabled/main.tf

@@ -51,3 +51,7 @@ output "private_key_path" {
 output "public_ip" {
   value = module.red-instance.public_ip
 }
+
+output "public_dns" {
+  value = module.red-instance.public_dns
+}

dev/enabled/main.tf

@@ -20,6 +20,10 @@ module "red-instance" {
   user_data_script_path   = "script.sh"
   enable_s3_bucket_policy = true
   s3_bucket_name          = "red-drop-s3"
+  enable_public_dns       = true
+  apex_domain             = "rag-space.com"
+  dns_name                = "red-instance.rag-space.com"
+
   additional_tags = {
     Environment = "Has-VPC"
   }
@@ -49,3 +53,7 @@ output "private_key_path" {
 output "public_ip" {
   value = module.red-instance.public_ip
 }
+
+output "public_dns" {
+  value = module.red-instance.public_dns
+}

red-instance/main.tf

@@ -92,16 +92,3 @@ resource "aws_instance" "red-instance" {
     var.additional_tags,
   )
 }
-
-# Resource block for allocating an Elastic IP address (optional)
-resource "aws_eip" "red_instance_eip" {
-  count    = var.allocate_eip ? 1 : 0
-  instance = aws_instance.red-instance.id
-
-  tags = merge(
-    {
-      Name = "${var.project_name}-red-instance-eip"
-    },
-    var.additional_tags,
-  )
-}

red-instance/outputs.tf

@@ -27,3 +27,8 @@ output "public_ip" {
   value       = var.allocate_eip ? aws_eip.red_instance_eip[0].public_ip : "Public IP not allocated"
   description = "The public IP address of the instance"
 }
+
+output "public_dns" {
+  value       = var.enable_public_dns ? aws_route53_record.red_instance_dns[0].fqdn : "Public DNS not allocated"
+  description = "The public DNS name of the instance"
+}

red-instance/public_dns.tf

@@ -0,0 +1,30 @@
+# This Terraform file creates a public DNS record for the red-instance EC2 instance.
+
+# Data source block for getting the Route 53 zone
+data "aws_route53_zone" "zone" {
+  count = var.enable_public_dns ? 1 : 0
+  name  = var.apex_domain
+}
+
+# Resource block for allocating an Elastic IP address (optional)
+resource "aws_eip" "red_instance_eip" {
+  count    = var.allocate_eip ? 1 : 0
+  instance = aws_instance.red-instance.id
+
+  tags = merge(
+    {
+      Name = "${var.project_name}-red-instance-eip"
+    },
+    var.additional_tags,
+  )
+}
+
+# Resource block for creating a public DNS record
+resource "aws_route53_record" "red_instance_dns" {
+  count   = var.enable_public_dns ? 1 : 0
+  zone_id = data.aws_route53_zone.zone[count.index].zone_id
+  name    = var.dns_name
+  type    = "A"
+  ttl     = "300"
+  records = [aws_eip.red_instance_eip[count.index].public_ip]
+}

red-instance/public-network.tf red-instance/public_vpc.tfred-instance/public-network.tf renamed to red-instance/public_vpc.tf

@@ -112,3 +112,21 @@ variable "enable_s3_bucket_policy" {
   type        = bool
   default     = false
 }
+
+variable "enable_public_dns" {
+  description = "Controls whether a public DNS record should be created"
+  type        = bool
+  default     = false
+}
+
+variable "apex_domain" {
+  description = "The apex domain to use for the public DNS record"
+  type        = string
+  default     = ""
+}
+
+variable "dns_name" {
+  description = "The DNS name to use for the public DNS record"
+  type        = string
+  default     = ""
+}