chore: adding the various upstream changes

gambol99 · gambol99 · commit 3f782fc561f3 · 2024-12-03T17:41:37.000Z
diff --git a/modules/destination/main.tf b/modules/destination/main.tf
@@ -245,10 +245,6 @@ module "collector" {
   providers = {
     aws.useast1 = aws.us_east_1
   }
-
-  depends_on = [
-    aws_quicksight_user.admin
-  ]
 }
 
 ## Provision the cloud intelligence dashboards
@@ -272,13 +268,41 @@ module "dashboards" {
   }
 
   depends_on = [
-    aws_cloudformation_stack.core_data_export_destination,
+    aws_cloudformation_stack.data_export_destination,
     aws_quicksight_account_subscription.subscription,
     aws_quicksight_user.admin,
     module.collector,
   ]
 }
 
+## Provision the stack contain the cora data exports in the management account
+## Deployment of same stack the management account
+resource "aws_cloudformation_stack" "data_export_destination" {
+  capabilities = ["CAPABILITY_NAMED_IAM", "CAPABILITY_AUTO_EXPAND"]
+  name         = var.stack_name_cora_data_exports
+  on_failure   = "ROLLBACK"
+  tags         = var.tags
+  template_url = format("%s/cudos/%s", local.bucket_url, "data-exports-aggregation.yaml")
+
+  parameters = {
+    "DestinationAccountId" = local.account_id,
+    "EnableSCAD"           = var.enable_scad ? "yes" : "no",
+    "ManageCOH"            = "no",
+    "ManageCUR2"           = "yes",
+    "SourceAccountIds"     = join(",", local.payer_account_ids),
+  }
+
+  lifecycle {
+    ignore_changes = [
+      capabilities,
+    ]
+  }
+
+  depends_on = [
+    aws_s3_object.cloudformation_templates,
+  ]
+}
+
 ## We need to provision the data collection stack in the colletor account
 resource "aws_cloudformation_stack" "cudos_data_collection" {
   name         = var.stack_name_collectors
@@ -304,38 +328,8 @@ resource "aws_cloudformation_stack" "cudos_data_collection" {
   }
 
   depends_on = [
+    aws_cloudformation_stack.data_export_destination,
     aws_s3_object.cloudformation_templates,
-    module.collector,
-    module.dashboards,
-  ]
-}
-
-## Provision the stack contain the cora data exports in the management account
-## Deployment of same stack the management account
-resource "aws_cloudformation_stack" "core_data_export_destination" {
-  capabilities = ["CAPABILITY_NAMED_IAM", "CAPABILITY_AUTO_EXPAND"]
-  name         = var.stack_name_cora_data_exports
-  on_failure   = "ROLLBACK"
-  tags         = var.tags
-  template_url = format("%s/cudos/%s", local.bucket_url, "data-exports-aggregation.yaml")
-
-  parameters = {
-    "DestinationAccountId" = local.account_id,
-    "EnableSCAD"           = var.enable_scad ? "yes" : "no",
-    "ManageCOH"            = "no",
-    "ManageCUR2"           = "yes",
-    "SourceAccountIds"     = join(",", local.payer_account_ids),
-  }
-
-  lifecycle {
-    ignore_changes = [
-      capabilities,
-    ]
-  }
-
-  depends_on = [
-    aws_s3_object.cloudformation_templates,
-    module.collector,
   ]
 }
 
diff --git a/modules/source/locals.tf b/modules/source/locals.tf
@@ -6,8 +6,6 @@ locals {
   management_account_id = data.aws_caller_identity.current.account_id
   ## The s3 bucket name for the cloudformation scripts
   stacks_base_url = format("https://%s.s3.%s.amazonaws.com", var.stacks_bucket_name, local.region)
-  ## The account id where the dashboard is being deployed
-  destination_account_id = var.destination_account_id
   ## The organization units where the dashboard is being deployed
   organizational_unit_ids = join(",", var.organizational_unit_ids)
   ## Indicate if the read permissions stack should be deployed
diff --git a/modules/source/main.tf b/modules/source/main.tf
@@ -97,15 +97,15 @@ module "source" {
 
 ## Provision the stack contain the cora data exports in the management account
 ## Deployment of same stack the management account
-resource "aws_cloudformation_stack" "core_data_export_management" {
+resource "aws_cloudformation_stack" "data_export_management" {
   capabilities = ["CAPABILITY_NAMED_IAM", "CAPABILITY_AUTO_EXPAND"]
   name         = var.stack_name_data_exports_source
   on_failure   = "ROLLBACK"
   tags         = var.tags
   template_url = format("%s/cudos/%s", local.stacks_base_url, "data-exports-aggregation.yaml")
 
   parameters = {
-    "DestinationAccountId" = local.destination_account_id,
+    "DestinationAccountId" = var.destination_account_id,
     "EnableSCAD"           = var.enable_scad ? "yes" : "no",
     "ManageCOH"            = var.enable_compute_optimizization_hub ? "yes" : "no",
     "ManageCUR2"           = "yes",
@@ -116,6 +116,11 @@ resource "aws_cloudformation_stack" "core_data_export_management" {
       capabilities,
     ]
   }
+
+  depends_on = [
+    aws_s3_object.cloudformation_templates,
+    module.source,
+  ]
 }
 
 ## We need to provision the read permissions stack within the management account, note
@@ -131,7 +136,7 @@ resource "aws_cloudformation_stack" "cudos_read_permissions" {
 
   parameters = {
     "AllowModuleReadInMgmt"           = "yes",
-    "DataCollectionAccountID"         = local.destination_account_id,
+    "DataCollectionAccountID"         = var.destination_account_id,
     "IncludeBackupModule"             = var.enable_backup_module ? "yes" : "no",
     "IncludeBudgetsModule"            = var.enable_budgets_module ? "yes" : "no",
     "IncludeComputeOptimizerModule"   = var.enable_compute_optimizer_module ? "yes" : "no",
diff --git a/modules/source/variables.tf b/modules/source/variables.tf
@@ -1,9 +1,3 @@
-
-variable "tags" {
-  description = "Tags to apply to all resources"
-  type        = map(string)
-}
-
 variable "destination_account_id" {
   description = "The AWS account ID for the destination account"
   type        = string
@@ -14,22 +8,28 @@ variable "destination_bucket_arn" {
   type        = string
 }
 
-variable "stacks_bucket_name" {
-  description = "The name of the bucket to store the CloudFormation templates"
-  type        = string
-  default     = "cid-cloudformation-templates"
+variable "enable_backup_module" {
+  description = "Indicates if the Backup module should be enabled"
+  type        = bool
+  default     = true
 }
 
-variable "stack_name_read_permissions" {
-  description = "The name of the CloudFormation stack to create the collectors"
-  type        = string
-  default     = "CidDataCollectionReadPermissionsStack"
+variable "enable_budgets_module" {
+  description = "Indicates if the Budget module should be enabled"
+  type        = bool
+  default     = true
 }
 
-variable "stack_name_data_exports_source" {
-  description = "The name of the CloudFormation stack to create the Data Exports"
-  type        = string
-  default     = "CidDataExportsSourceStack"
+variable "enable_compute_optimizer_module" {
+  description = "Indicates if the Compute Optimizer module should be enabled"
+  type        = bool
+  default     = true
+}
+
+variable "enable_compute_optimizization_hub" {
+  description = "Indicates if the Compute Optimizization Hub module should be enabled"
+  type        = bool
+  default     = false
 }
 
 variable "enable_cost_anomaly_module" {
@@ -38,8 +38,8 @@ variable "enable_cost_anomaly_module" {
   default     = true
 }
 
-variable "enable_scad" {
-  description = "Indicates if the SCAD module should be enabled, only available when Cora enabled"
+variable "enable_ecs_chargeback_module" {
+  description = "Indicates if the ECS Chargeback module should be enabled"
   type        = bool
   default     = false
 }
@@ -50,28 +50,28 @@ variable "enable_health_events_module" {
   default     = true
 }
 
-variable "enable_backup_module" {
-  description = "Indicates if the Backup module should be enabled"
+variable "enable_inventory_module" {
+  description = "Indicates if the Inventory module should be enabled"
   type        = bool
   default     = true
 }
 
-variable "enable_budgets_module" {
-  description = "Indicates if the Budget module should be enabled"
+variable "enable_rds_utilization_module" {
+  description = "Indicates if the RDS Utilization module should be enabled"
   type        = bool
   default     = true
 }
 
-variable "enable_ecs_chargeback_module" {
-  description = "Indicates if the ECS Chargeback module should be enabled"
+variable "enable_rightsizing_module" {
+  description = "Indicates if the Rightsizing module should be enabled"
   type        = bool
-  default     = false
+  default     = true
 }
 
-variable "enable_compute_optimizer_module" {
-  description = "Indicates if the Compute Optimizer module should be enabled"
+variable "enable_scad" {
+  description = "Indicates if the SCAD module should be enabled, only available when Cora enabled"
   type        = bool
-  default     = true
+  default     = false
 }
 
 variable "enable_tao_module" {
@@ -86,32 +86,31 @@ variable "enable_transit_gateway_module" {
   default     = true
 }
 
-variable "enable_inventory_module" {
-  description = "Indicates if the Inventory module should be enabled"
-  type        = bool
-  default     = true
+variable "organizational_unit_ids" {
+  description = "List of organization units where the read permissions stack will be deployed"
+  type        = list(string)
+  default     = []
 }
 
-variable "enable_rds_utilization_module" {
-  description = "Indicates if the RDS Utilization module should be enabled"
-  type        = bool
-  default     = true
+variable "stack_name_data_exports_source" {
+  description = "The name of the CloudFormation stack to create the Data Exports"
+  type        = string
+  default     = "CidDataExportsSourceStack"
 }
 
-variable "enable_rightsizing_module" {
-  description = "Indicates if the Rightsizing module should be enabled"
-  type        = bool
-  default     = true
+variable "stack_name_read_permissions" {
+  description = "The name of the CloudFormation stack to create the collectors"
+  type        = string
+  default     = "CidDataCollectionReadPermissionsStack"
 }
 
-variable "enable_compute_optimizization_hub" {
-  description = "Indicates if the Compute Optimizization Hub module should be enabled"
-  type        = bool
-  default     = false
+variable "stacks_bucket_name" {
+  description = "The name of the bucket to store the CloudFormation templates"
+  type        = string
+  default     = "cid-cloudformation-templates"
 }
 
-variable "organizational_unit_ids" {
-  description = "List of organization units where the read permissions stack will be deployed"
-  type        = list(string)
-  default     = []
+variable "tags" {
+  description = "Tags to apply to all resources"
+  type        = map(string)
 }
diff --git a/variables.awk b/variables.awk
@@ -0,0 +1,73 @@
+#!/usr/bin/env -S awk -f
+# https://gist.github.com/yermulnik/7e0cf991962680d406692e1db1b551e6
+# Tested with GNU Awk 5.1.0, API: 3.0 (GNU MPFR 4.1.0, GNU MP 6.2.1)
+# Usage: /path/to/tf_vars_sort.awk < variables.tf | tee sorted_variables.tf
+# Note: "chmod +x /path/to/tf_vars_sort.awk" before use
+# No licensing; yermulnik@gmail.com, 2021-2024
+{
+	# skip blank lines at the beginning of file
+	if (!resource_type && length($0) == 0) next
+
+	# pick only known Terraform resource definition block types of the 1st level
+	# https://github.com/hashicorp/terraform/blob/main/internal/configs/parser_config.go#L92-L230
+	switch ($0) {
+		# ex: block_type {
+		case /^[[:space:]]*(import|locals|moved|removed|terraform)[[:space:]]+{/:
+			resource_type = $1
+			resource_ident = resource_type "|" block_counter++
+			break
+		# ex: block_type type_label name_label {
+		case /^[[:space:]]*(data|ephemeral|resource)[[:space:]]+("?[[:alnum:]_-]+"?[[:space:]]+){2}{/:
+			resource_type = $1
+			resource_subtype = $2
+			resource_name = $3
+			resource_ident = resource_type "|" resource_subtype "|" resource_name
+			break
+		# ex: block_type name_label {
+		case /^[[:space:]]*(check|module|output|provider|variable)[[:space:]]+"?[[:alnum:]_-]+"?[[:space:]]+{/:
+			resource_type = $1
+			resource_name = $2
+			resource_ident = resource_type "|" resource_name
+			break
+	}
+	arr[resource_ident] = arr[resource_ident] ? arr[resource_ident] RS $0 : $0
+} END {
+	# exit if there was solely empty input
+	# (input consisting of multiple empty lines only, counts in as empty input too)
+	if (length(arr) == 0) exit
+	# declare empty array (the one to hold final result)
+	split("", res)
+	# case-insensitive string operations in this block
+	# (primarily for the `asort()` call below)
+	IGNORECASE = 1
+	# sort by `resource_ident` which is a key in our case
+	asort(arr)
+
+	# blank-lines-fix each block
+	for (item in arr) {
+		split(arr[item],new_arr,RS)
+
+		# remove multiple blank lines at the end of resource definition block
+		while (length(new_arr[length(new_arr)]) == 0) delete new_arr[length(new_arr)]
+
+		# add one single blank line at the end of the resource definition block
+		# so that blocks are delimited with a blank like to align with TF code style
+		new_arr[length(new_arr)+1] = RS
+
+		# fill resulting array with data from each resource definition block
+		for (line in new_arr) {
+			# trim whitespaces at the end of each line in resource definition block
+			gsub(/[[:space:]]+$/, "", new_arr[line])
+			res[length(res)+1] = new_arr[line]
+		}
+	}
+
+	# ensure there are no extra blank lines at the beginning and end of data
+	while (length(res[1]) == 0) delete res[1]
+	while (length(res[length(res)]) == 0) delete res[length(res)]
+
+	# print resulting data to stdout
+	for (line in res) {
+		print res[line]
+	}
+}
