oozou
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 9 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 146 additions & 0 deletions b/‎README.md‎
Lines changed: 146 additions & 0 deletions
diff --git a/‎examples/complete-lambda/README.md‎
Lines changed: 41 additions & 0 deletions b/‎examples/complete-lambda/README.md‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎examples/complete-lambda/main.tf‎
Lines changed: 93 additions & 0 deletions b/‎examples/complete-lambda/main.tf‎
Lines changed: 93 additions & 0 deletions
diff --git a/‎examples/complete-lambda/outputs.tf‎ b/‎examples/complete-lambda/outputs.tf‎
diff --git a/‎examples/complete-lambda/outputs/example-devops-cms.zip‎
278 Bytes b/‎examples/complete-lambda/outputs/example-devops-cms.zip‎
278 Bytes
diff --git a/‎examples/complete-lambda/src/main.py‎
Lines changed: 10 additions & 0 deletions b/‎examples/complete-lambda/src/main.py‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎examples/complete-lambda/terraform.example.tfvars‎
Lines changed: 6 additions & 0 deletions b/‎examples/complete-lambda/terraform.example.tfvars‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎examples/complete-lambda/variables.tf‎
Lines changed: 23 additions & 0 deletions b/‎examples/complete-lambda/variables.tf‎
Lines changed: 23 additions & 0 deletions
@@ -24,6 +24,7 @@ crash.*.log
 # to change depending on the environment.
 #
 *.tfvars
+!terraform.*example*.tfvars
 
 # Ignore override files as they are usually used to override resources locally and so
 # are not checked in
 
@@ -0,0 +1,9 @@
+# Change Log
+
+All notable changes to this module will be documented in this file.
+
+## [1.0.0] - 2022-07-21
+
+### Added
+
+- init terraform-aws-step-functions module
@@ -1 +1,147 @@
 # terraform-aws-step-functions
+
+## Usage
+
+```terraform
+module "state_machine" {
+  source = "git::ssh://git@github.com/oozou/terraform-aws-step-functions.git?ref=<version>"
+
+  prefix      = "oozou"
+  environment = "dev"
+  name        = "schedule"
+
+  # IAM
+  is_create_role             = true
+  exists_role_arn            = ""  # Ignore if is_create_role is `true`
+  additional_role_policy_arn = {}
+
+  # State machine settings
+  type       = "STANDARD"  # Or EXPRESS is allowed
+  ## Recommendation use this; copy definition and insert here or using templatefile function
+  ## https://ap-southeast-1.console.aws.amazon.com/states/home?region=ap-southeast-1#/homepage
+  definition = <<EOF
+{
+  "Comment": "A description of my state machine",
+  "StartAt": "LambdaInvoke",
+  "States": {
+    "LambdaInvoke": {
+      "Type": "Task",
+      "Resource": "arn:aws:states:::lambda:invoke",
+      "OutputPath": "$.Payload",
+      "Parameters": {
+        "Payload.$": "$",
+        "FunctionName": "${module.lambda.function_arn}"
+      },
+      "Next": "CheckStatusCode"
+    },
+    "CheckStatusCode": {
+      "Type": "Choice",
+      "InputPath": "$",
+      "Choices": [
+        {
+          "Variable": "$.statusCode",
+          "NumericEquals": 500,
+          "Next": "Wait"
+        }
+      ],
+      "Default": "SuccessState"
+    },
+    "Wait": {
+      "Type": "Wait",
+      "OutputPath": "$.event",
+      "Seconds": 10,
+      "Next": "LambdaInvoke"
+    },
+    "SuccessState": {
+      "Type": "Succeed"
+    }
+  }
+}
+EOF
+
+  # Auto generate policy related to this resource
+  service_integrations = {
+    lambda = {
+      lambda = ["<arn_of_lambda_function>*"]
+    }
+  }
+
+  # Logging 
+  is_create_cloudwatch_log_group   = true
+  log_include_execution_data       = null
+  log_level                        = "ALL"
+  cloudwatch_log_retention_in_days = 30
+
+  tags = { "Workspace" = "xxx-yyy-zzz" }
+}
+```
+
+<!-- BEGIN_TF_DOCS -->
+## Requirements
+
+| Name                                                                      | Version  |
+|---------------------------------------------------------------------------|----------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.0.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws)                   | >= 4.00  |
+
+## Providers
+
+| Name                                              | Version |
+|---------------------------------------------------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | 4.19.0  |
+
+## Modules
+
+No modules.
+
+## Resources
+
+| Name                                                                                                                                               | Type        |
+|----------------------------------------------------------------------------------------------------------------------------------------------------|-------------|
+| [aws_cloudwatch_log_group.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_log_group)                  | resource    |
+| [aws_iam_policy.log_access_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy)                         | resource    |
+| [aws_iam_policy.service](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy)                                   | resource    |
+| [aws_iam_role.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role)                                          | resource    |
+| [aws_iam_role_policy_attachment.log_acces](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource    |
+| [aws_iam_role_policy_attachment.service](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment)   | resource    |
+| [aws_iam_role_policy_attachment.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment)      | resource    |
+| [aws_sfn_state_machine.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/sfn_state_machine)                        | resource    |
+| [aws_caller_identity.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity)                         | data source |
+| [aws_iam_policy_document.assume_role](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document)          | data source |
+| [aws_iam_policy_document.log_access_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document)    | data source |
+| [aws_iam_policy_document.service](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document)              | data source |
+| [aws_region.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/region)                                           | data source |
+
+## Inputs
+
+| Name                                                                                                                                       | Description                                                                                                                                              | Type           | Default      | Required |
+|--------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------|----------------|--------------|:--------:|
+| <a name="input_additional_role_policy_arn"></a> [additional\_role\_policy\_arn](#input\_additional\_role\_policy\_arn)                     | Map of policies ARNs to attach to the lambda                                                                                                             | `map(string)`  | `{}`         |    no    |
+| <a name="input_attach_policies_for_integrations"></a> [attach\_policies\_for\_integrations](#input\_attach\_policies\_for\_integrations)   | Whether to attach AWS Service policies to IAM role                                                                                                       | `bool`         | `true`       |    no    |
+| <a name="input_cloudwatch_log_retention_in_days"></a> [cloudwatch\_log\_retention\_in\_days](#input\_cloudwatch\_log\_retention\_in\_days) | Retention day for cloudwatch log group                                                                                                                   | `number`       | `90`         |    no    |
+| <a name="input_definition"></a> [definition](#input\_definition)                                                                           | The Amazon States Language definition of the Step Function                                                                                               | `string`       | n/a          |   yes    |
+| <a name="input_environment"></a> [environment](#input\_environment)                                                                        | Environment Variable used as a prefix                                                                                                                    | `string`       | n/a          |   yes    |
+| <a name="input_exists_role_arn"></a> [exists\_role\_arn](#input\_exists\_role\_arn)                                                        | The exist role arn for step functions                                                                                                                    | `string`       | `""`         |    no    |
+| <a name="input_is_create_cloudwatch_log_group"></a> [is\_create\_cloudwatch\_log\_group](#input\_is\_create\_cloudwatch\_log\_group)       | Whether to create cloudwatch log group or not                                                                                                            | `bool`         | `true`       |    no    |
+| <a name="input_is_create_role"></a> [is\_create\_role](#input\_is\_create\_role)                                                           | Whether to create step function roles or not                                                                                                             | `bool`         | `true`       |    no    |
+| <a name="input_kms_key_id"></a> [kms\_key\_id](#input\_kms\_key\_id)                                                                       | The ARN for the KMS encryption key. Leave this default if account\_mode is hub. If account\_mode is spoke, please provide centrailize kms key arn (hub). | `string`       | `""`         |    no    |
+| <a name="input_log_include_execution_data"></a> [log\_include\_execution\_data](#input\_log\_include\_execution\_data)                     | (Optional) Determines whether execution data is included in your log. When set to false, data is excluded.                                               | `bool`         | `null`       |    no    |
+| <a name="input_log_level"></a> [log\_level](#input\_log\_level)                                                                            | (Optional) Defines which category of execution history events are logged. Valid values: ALL, ERROR, FATAL, OFF                                           | `string`       | `"OFF"`      |    no    |
+| <a name="input_name"></a> [name](#input\_name)                                                                                             | Name of the ECS cluster to create                                                                                                                        | `string`       | n/a          |   yes    |
+| <a name="input_prefix"></a> [prefix](#input\_prefix)                                                                                       | The prefix name of customer to be displayed in AWS console and resource                                                                                  | `string`       | n/a          |   yes    |
+| <a name="input_service_integrations"></a> [service\_integrations](#input\_service\_integrations)                                           | Map of AWS service integrations to allow in IAM role policy                                                                                              | `any`          | `{}`         |    no    |
+| <a name="input_tags"></a> [tags](#input\_tags)                                                                                             | Custom tags which can be passed on to the AWS resources. They should be key value pairs having distinct keys                                             | `map(any)`     | `{}`         |    no    |
+| <a name="input_trusted_entities"></a> [trusted\_entities](#input\_trusted\_entities)                                                       | Step Function additional trusted entities for assuming roles (trust relationship)                                                                        | `list(string)` | `[]`         |    no    |
+| <a name="input_type"></a> [type](#input\_type)                                                                                             | Determines whether a Standard or Express state machine is created. The default is STANDARD. Valid Values: STANDARD \| EXPRESS                            | `string`       | `"STANDARD"` |    no    |
+
+## Outputs
+
+| Name                                                                                                                        | Description                                            |
+|-----------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------|
+| <a name="output_role_arn"></a> [role\_arn](#output\_role\_arn)                                                              | The ARN of the IAM role created for the Step Function  |
+| <a name="output_role_name"></a> [role\_name](#output\_role\_name)                                                           | The name of the IAM role created for the Step Function |
+| <a name="output_state_machine_arn"></a> [state\_machine\_arn](#output\_state\_machine\_arn)                                 | The ARN of the Step Function                           |
+| <a name="output_state_machine_creation_date"></a> [state\_machine\_creation\_date](#output\_state\_machine\_creation\_date) | The date the Step Function was created                 |
+| <a name="output_state_machine_id"></a> [state\_machine\_id](#output\_state\_machine\_id)                                    | The ARN of the Step Function                           |
+| <a name="output_state_machine_status"></a> [state\_machine\_status](#output\_state\_machine\_status)                        | The current status of the Step Function                |
+<!-- END_TF_DOCS -->
@@ -0,0 +1,41 @@
+<!-- BEGIN_TF_DOCS -->
+## Requirements
+
+| Name                                                                      | Version  |
+|---------------------------------------------------------------------------|----------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.0.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws)                   | >= 4.0.0 |
+
+## Providers
+
+| Name                                              | Version |
+|---------------------------------------------------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | 4.23.0  |
+
+## Modules
+
+| Name                                                                          | Source                                        | Version |
+|-------------------------------------------------------------------------------|-----------------------------------------------|---------|
+| <a name="module_lambda"></a> [lambda](#module\_lambda)                        | git@github.com:oozou/terraform-aws-lambda.git | v1.1.0  |
+| <a name="module_state_machine"></a> [state\_machine](#module\_state\_machine) | ../../                                        | n/a     |
+
+## Resources
+
+| Name                                                                                                                          | Type        |
+|-------------------------------------------------------------------------------------------------------------------------------|-------------|
+| [aws_caller_identity.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity) | data source |
+| [aws_region.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/region)                   | data source |
+
+## Inputs
+
+| Name                                                                  | Description                                                                                                  | Type       | Default | Required |
+|-----------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------|------------|---------|:--------:|
+| <a name="input_custom_tags"></a> [custom\_tags](#input\_custom\_tags) | Custom tags which can be passed on to the AWS resources. They should be key value pairs having distinct keys | `map(any)` | `{}`    |    no    |
+| <a name="input_environment"></a> [environment](#input\_environment)   | Environment Variable used as a prefix                                                                        | `string`   | n/a     |   yes    |
+| <a name="input_name"></a> [name](#input\_name)                        | Name of the ECS cluster and s3 also redis to create                                                          | `string`   | n/a     |   yes    |
+| <a name="input_prefix"></a> [prefix](#input\_prefix)                  | The prefix name of customer to be displayed in AWS console and resource                                      | `string`   | n/a     |   yes    |
+
+## Outputs
+
+No outputs.
+<!-- END_TF_DOCS -->
@@ -0,0 +1,93 @@
+module "lambda" {
+  source = "git@github.com:oozou/terraform-aws-lambda.git?ref=v1.1.0"
+
+  prefix      = var.prefix
+  environment = var.environment
+  name        = var.name
+
+  is_edge = false
+
+  # Source code
+  source_code_dir           = "./src"
+  file_globs                = ["main.py"]
+  compressed_local_file_dir = "./outputs"
+
+  # Lambda Env
+  runtime = "python3.9"
+  handler = "main.lambda_handler"
+
+  # IAM
+  additional_lambda_role_policy_arns = {}
+
+  # Resource policy
+  lambda_permission_configurations = {}
+
+  # Env
+  ssm_params = {}
+
+  tags = var.custom_tags
+}
+
+module "state_machine" {
+  source = "../../"
+
+  prefix      = var.prefix
+  environment = var.environment
+  name        = var.name
+
+  is_create_role             = true
+  additional_role_policy_arn = {}
+
+  type       = "STANDARD"
+  definition = <<EOF
+{
+  "Comment": "A description of my state machine",
+  "StartAt": "LambdaInvoke",
+  "States": {
+    "LambdaInvoke": {
+      "Type": "Task",
+      "Resource": "arn:aws:states:::lambda:invoke",
+      "OutputPath": "$.Payload",
+      "Parameters": {
+        "Payload.$": "$",
+        "FunctionName": "${module.lambda.function_arn}"
+      },
+      "Next": "CheckStatusCode"
+    },
+    "CheckStatusCode": {
+      "Type": "Choice",
+      "InputPath": "$",
+      "Choices": [
+        {
+          "Variable": "$.statusCode",
+          "NumericEquals": 500,
+          "Next": "Wait"
+        }
+      ],
+      "Default": "SuccessState"
+    },
+    "Wait": {
+      "Type": "Wait",
+      "OutputPath": "$.event",
+      "Seconds": 10,
+      "Next": "LambdaInvoke"
+    },
+    "SuccessState": {
+      "Type": "Succeed"
+    }
+  }
+}
+EOF
+
+  service_integrations = {
+    lambda = {
+      lambda = ["${module.lambda.function_arn}*"]
+    }
+  }
+
+  is_create_cloudwatch_log_group = true
+  log_include_execution_data     = null
+  log_level                      = "ALL"
+
+  tags = var.custom_tags
+}
@@ -0,0 +1,10 @@
+import json
+
+def lambda_handler(event, context):
+    print(f'Event: {event}')
+
+    result = {}
+    result['statusCode'] = 200
+    result['event'] = event
+
+    return json.loads(json.dumps(result, default=str))
@@ -0,0 +1,6 @@
+prefix      = "example"
+environment = "devops"
+name        = "cms"
+custom_tags = {
+  "Remark" = "terraform-aws-step-functions-example"
+}
@@ -0,0 +1,23 @@
+/* -------------------------------------------------------------------------- */
+/*                                  Generics                                  */
+/* -------------------------------------------------------------------------- */
+variable "prefix" {
+  description = "The prefix name of customer to be displayed in AWS console and resource"
+  type        = string
+}
+
+variable "environment" {
+  description = "Environment Variable used as a prefix"
+  type        = string
+}
+
+variable "name" {
+  description = "Name of the ECS cluster and s3 also redis to create"
+  type        = string
+}
+
+variable "custom_tags" {
+  description = "Custom tags which can be passed on to the AWS resources. They should be key value pairs having distinct keys"
+  type        = map(any)
+  default     = {}
+}
Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,7 @@ crash.*.log`
`24`	`24`	`# to change depending on the environment.`
`25`	`25`	`#`
`26`	`26`	`*.tfvars`
	`27`	`+!terraform.example.tfvars`
`27`	`28`
`28`	`29`	`# Ignore override files as they are usually used to override resources locally and so`
`29`	`30`	`# are not checked in`