Skip to content

Commit

Permalink
feat: add lieux inclusion numerique dynamo table
Browse files Browse the repository at this point in the history
  • Loading branch information
@marc-gavanier
marc-gavanier committed Sep 8, 2023
1 parent c9083a2 commit 91b2892
Show file tree
Hide file tree
Showing 2 changed files with 113 additions and 3 deletions.
109 changes: 109 additions & 0 deletions dynamo.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,109 @@
resource "aws_dynamodb_table" "lieux_inclusion_numerique_table" {
name = "LieuxInclusionNumerique"
billing_mode = "PROVISIONED"
read_capacity = 5
write_capacity = 5
hash_key = "id"

attribute {
name = "id"
type = "S"
}

tags = local.tags
}

resource "aws_iam_role" "autoscaling_role" {
name = "dynamodb-autoscaling-role"
assume_role_policy = jsonencode({
Version = "2012-10-17",
Statement = [
{
Action = "sts:AssumeRole",
Effect = "Allow",
Principal = {
Service = "application-autoscaling.amazonaws.com"
}
}
]
})
}

resource "aws_appautoscaling_target" "dynamodb_read_target" {
service_namespace = "dynamodb"
scalable_dimension = "dynamodb:table:ReadCapacityUnits"
resource_id = "table/${aws_dynamodb_table.lieux_inclusion_numerique_table.name}"
min_capacity = 1
max_capacity = 10
role_arn = aws_iam_role.autoscaling_role.arn
}

resource "aws_appautoscaling_target" "dynamodb_write_target" {
service_namespace = "dynamodb"
scalable_dimension = "dynamodb:table:WriteCapacityUnits"
resource_id = "table/${aws_dynamodb_table.lieux_inclusion_numerique_table.name}"
min_capacity = 1
max_capacity = 10
role_arn = aws_iam_role.autoscaling_role.arn
}

resource "aws_appautoscaling_policy" "dynamodb_read_policy" {
name = "dynamodb-scaling-read-policy"
policy_type = "TargetTrackingScaling"
resource_id = aws_appautoscaling_target.dynamodb_read_target.resource_id
scalable_dimension = aws_appautoscaling_target.dynamodb_read_target.scalable_dimension
service_namespace = aws_appautoscaling_target.dynamodb_read_target.service_namespace

target_tracking_scaling_policy_configuration {
predefined_metric_specification {
predefined_metric_type = "DynamoDBReadCapacityUtilization"
}

target_value = 70.0
scale_in_cooldown = 60
scale_out_cooldown = 60
disable_scale_in = false
}
}

resource "aws_appautoscaling_policy" "dynamodb_write_policy" {
name = "dynamodb-scaling-write-policy"
policy_type = "TargetTrackingScaling"
resource_id = aws_appautoscaling_target.dynamodb_write_target.resource_id
scalable_dimension = aws_appautoscaling_target.dynamodb_write_target.scalable_dimension
service_namespace = aws_appautoscaling_target.dynamodb_write_target.service_namespace

target_tracking_scaling_policy_configuration {
predefined_metric_specification {
predefined_metric_type = "DynamoDBWriteCapacityUtilization"
}

target_value = 70.0
scale_in_cooldown = 60
scale_out_cooldown = 60
disable_scale_in = false
}
}

resource "aws_iam_policy" "lieux_inclusion_numerique_table_policy" {
name = "lieux_inclusion_numerique_table_policy"
description = "IAM policy to allow DynamoDB Table Lieux d'inclusion numérique access"

policy = jsonencode({
Version = "2012-10-17",
Statement = [
{
Resource = aws_dynamodb_table.lieux_inclusion_numerique_table.arn
Effect = "Allow",
Action = [
"dynamodb:GetItem",
"dynamodb:PutItem",
"dynamodb:Query",
"dynamodb:Scan",
"dynamodb:UpdateItem",
"dynamodb:DeleteItem"
],
}
]
})
}
7 changes: 4 additions & 3 deletions lambda.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,8 @@ resource "aws_iam_role" "api_routes_roles" {
})
}

resource "aws_iam_role_policy_attachment" "lambda_policy" {
role = aws_iam_role.api_routes_roles.name
policy_arn = "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
resource "aws_iam_policy_attachment" "lieux_inclusion_numerique_table_policy_attachment" {
name = "lieux_inclusion_numerique_table_policy_attachment"
policy_arn = aws_iam_policy.lieux_inclusion_numerique_table_policy.arn
roles = [aws_iam_role.api_routes_roles.name]
}

0 comments on commit 91b2892

Please sign in to comment.