Home

Awesome

<!-- markdownlint-disable -->

<a href="https://cpco.io/homepage"><img src="https://github.com/cloudposse/terraform-aws-ecs-web-app/blob/main/.github/banner.png?raw=true" alt="Project Banner"/></a><br/> <p align="right"> <a href="https://github.com/cloudposse/terraform-aws-ecs-web-app/releases/latest"><img src="https://img.shields.io/github/release/cloudposse/terraform-aws-ecs-web-app.svg?style=for-the-badge" alt="Latest Release"/></a><a href="https://github.com/cloudposse/terraform-aws-ecs-web-app/commits"><img src="https://img.shields.io/github/last-commit/cloudposse/terraform-aws-ecs-web-app.svg?style=for-the-badge" alt="Last Updated"/></a><a href="https://slack.cloudposse.com"><img src="https://slack.cloudposse.com/for-the-badge.svg" alt="Slack Community"/></a></p>

<!-- markdownlint-restore --> <!-- ** DO NOT EDIT THIS FILE ** ** This file was automatically generated by the `cloudposse/build-harness`. ** 1) Make all changes to `README.yaml` ** 2) Run `make init` (you only need to do this once) ** 3) Run`make readme` to rebuild this file. ** ** (We maintain HUNDREDS of open source projects. This is how we maintain our sanity.) ** -->

A Terraform module which implements a web app on ECS and supporting AWS resources.

[!TIP]

πŸ‘½ Use Atmos with Terraform

Cloud Posse uses atmos to easily orchestrate multiple environments using Terraform. <br/> Works with Github Actions, Atlantis, or Spacelift.

<details> <summary><strong>Watch demo of using Atmos with Terraform</strong></summary> <img src="https://github.com/cloudposse/atmos/blob/main/docs/demo.gif?raw=true"/><br/> <i>Example of running <a href="https://atmos.tools"><code>atmos</code></a> to manage infrastructure from our <a href="https://atmos.tools/quick-start/">Quick Start</a> tutorial.</i> </detalis>

Usage

For a complete example, see examples/complete.

For automated tests of the complete example using bats and Terratest (which test and deploy the example on AWS), see test.

Other examples:

module "default_backend_web_app" {
  source = "cloudposse/ecs-web-app/aws"
  # Cloud Posse recommends pinning every module to a specific version
  # version     = "x.x.x"
  namespace                                       = "eg"
  stage                                           = "testing"
  name                                            = "appname"
  vpc_id                                          = module.vpc.vpc_id
  alb_ingress_unauthenticated_listener_arns       = module.alb.listener_arns
  alb_ingress_unauthenticated_listener_arns_count = 1
  aws_logs_region                                 = "us-east-2"
  ecs_cluster_arn                                 = aws_ecs_cluster.default.arn
  ecs_cluster_name                                = aws_ecs_cluster.default.name
  ecs_security_group_ids                          = [module.vpc.vpc_default_security_group_id]
  ecs_private_subnet_ids                          = module.subnets.private_subnet_ids
  alb_ingress_healthcheck_path                    = "/healthz"
  alb_ingress_unauthenticated_paths               = ["/*"]
  codepipeline_enabled                            = false

  container_environment = [
    {
      name = "COOKIE"
      value = "cookiemonster"
    },
    {
      name = "PORT"
      value = "80"
    }
  ]
}

[!IMPORTANT] In Cloud Posse's examples, we avoid pinning modules to specific versions to prevent discrepancies between the documentation and the latest released versions. However, for your own projects, we strongly advise pinning each module to the exact version you're using. This practice ensures the stability of your infrastructure. Additionally, we recommend implementing a systematic approach for updating versions to avoid unexpected changes.

<!-- markdownlint-disable -->

Makefile Targets

Available targets:

  help                                Help screen
  help/all                            Display help for all targets
  help/short                          This help short screen
  lint                                Lint terraform code

<!-- markdownlint-restore --> <!-- markdownlint-disable -->

Requirements

NameVersion
<a name="requirement_terraform"></a> terraform>= 1
<a name="requirement_aws"></a> aws>= 5.0

Providers

NameVersion
<a name="provider_aws"></a> aws>= 5.0

Modules

NameSourceVersion
<a name="module_alb_ingress"></a> alb_ingresscloudposse/alb-ingress/aws0.28.0
<a name="module_alb_target_group_cloudwatch_sns_alarms"></a> alb_target_group_cloudwatch_sns_alarmscloudposse/alb-target-group-cloudwatch-sns-alarms/aws0.17.0
<a name="module_container_definition"></a> container_definitioncloudposse/ecs-container-definition/aws0.58.1
<a name="module_ecr"></a> ecrcloudposse/ecr/aws0.41.0
<a name="module_ecs_alb_service_task"></a> ecs_alb_service_taskcloudposse/ecs-alb-service-task/aws0.64.1
<a name="module_ecs_cloudwatch_autoscaling"></a> ecs_cloudwatch_autoscalingcloudposse/ecs-cloudwatch-autoscaling/aws0.7.5
<a name="module_ecs_cloudwatch_sns_alarms"></a> ecs_cloudwatch_sns_alarmscloudposse/ecs-cloudwatch-sns-alarms/aws0.12.2
<a name="module_ecs_codepipeline"></a> ecs_codepipelinecloudposse/ecs-codepipeline/aws0.34.1
<a name="module_this"></a> thiscloudposse/label/null0.25.0

Resources

NameType
aws_cloudwatch_log_group.appresource
aws_region.currentdata source

Inputs

NameDescriptionTypeDefaultRequired
<a name="input_additional_tag_map"></a> additional_tag_mapAdditional key-value pairs to add to each map in tags_as_list_of_maps. Not added to tags or id.<br/>This is for some rare cases where resources want additional configuration of tags<br/>and therefore take a list of maps with tag key, value, and additional configuration.map(string){}no
<a name="input_alb_arn_suffix"></a> alb_arn_suffixARN suffix of the ALB for the Target Groupstring""no
<a name="input_alb_container_name"></a> alb_container_nameThe name of the container to associate with the ALB. If not provided, the generated container will be usedstringnullno
<a name="input_alb_ingress_authenticated_hosts"></a> alb_ingress_authenticated_hostsAuthenticated hosts to match in Hosts headerlist(string)[]no
<a name="input_alb_ingress_authenticated_listener_arns"></a> alb_ingress_authenticated_listener_arnsA list of authenticated ALB listener ARNs to attach ALB listener rules tolist(string)[]no
<a name="input_alb_ingress_authenticated_listener_arns_count"></a> alb_ingress_authenticated_listener_arns_countThe number of authenticated ARNs in alb_ingress_authenticated_listener_arns. This is necessary to work around a limitation in Terraform where counts cannot be computednumber0no
<a name="input_alb_ingress_authenticated_paths"></a> alb_ingress_authenticated_pathsAuthenticated path pattern to match (a maximum of 1 can be defined)list(string)[]no
<a name="input_alb_ingress_enable_default_target_group"></a> alb_ingress_enable_default_target_groupIf true, create a default target group for the ALB ingressbooltrueno
<a name="input_alb_ingress_health_check_healthy_threshold"></a> alb_ingress_health_check_healthy_thresholdThe number of consecutive health checks successes required before healthynumber2no
<a name="input_alb_ingress_health_check_interval"></a> alb_ingress_health_check_intervalThe duration in seconds in between health checksnumber15no
<a name="input_alb_ingress_health_check_matcher"></a> alb_ingress_health_check_matcherThe HTTP response codes to indicate a healthy checkstring"200-399"no
<a name="input_alb_ingress_health_check_timeout"></a> alb_ingress_health_check_timeoutThe amount of time to wait in seconds before failing a health check requestnumber10no
<a name="input_alb_ingress_health_check_unhealthy_threshold"></a> alb_ingress_health_check_unhealthy_thresholdThe number of consecutive health check failures required before unhealthynumber2no
<a name="input_alb_ingress_healthcheck_path"></a> alb_ingress_healthcheck_pathThe path of the healthcheck which the ALB checksstring"/"no
<a name="input_alb_ingress_healthcheck_protocol"></a> alb_ingress_healthcheck_protocolThe protocol to use to connect with the target. Defaults to HTTP. Not applicable when target_type is lambdastring"HTTP"no
<a name="input_alb_ingress_listener_authenticated_priority"></a> alb_ingress_listener_authenticated_priorityThe priority for the rules with authentication, between 1 and 50000 (1 being highest priority). Must be different from alb_ingress_listener_unauthenticated_priority since a listener can't have multiple rules with the same prioritynumber300no
<a name="input_alb_ingress_listener_unauthenticated_priority"></a> alb_ingress_listener_unauthenticated_priorityThe priority for the rules without authentication, between 1 and 50000 (1 being highest priority). Must be different from alb_ingress_listener_authenticated_priority since a listener can't have multiple rules with the same prioritynumber1000no
<a name="input_alb_ingress_load_balancing_algorithm_type"></a> alb_ingress_load_balancing_algorithm_typeDetermines how the load balancer selects targets when routing requests. Only applicable for Application Load Balancer Target Groups. The value is round_robin or least_outstanding_requests. The default is round_robin.string"round_robin"no
<a name="input_alb_ingress_protocol"></a> alb_ingress_protocolThe protocol for the created ALB target group (if target_group_arn is not set). One of HTTP, HTTPS. Defaults to HTTP.string"HTTP"no
<a name="input_alb_ingress_protocol_version"></a> alb_ingress_protocol_versionThe protocol version. One of HTTP1, HTTP2, GRPC. Only applicable when protocol is HTTP or HTTPS. Specify GRPC to send requests to targets using gRPC. Specify HTTP2 to send requests to targets using HTTP/2. The default is HTTP1, which sends requests to targets using HTTP/1.1string"HTTP1"no
<a name="input_alb_ingress_target_group_arn"></a> alb_ingress_target_group_arnExisting ALB target group ARN. If provided, set alb_ingress_enable_default_target_group to false to disable creation of the default target groupstring""no
<a name="input_alb_ingress_target_type"></a> alb_ingress_target_typeTarget type for the ALB ingress. One of ip, instance, lambda or container. Defaults to ip, for bridge networking mode should be instancestring"ip"no
<a name="input_alb_ingress_unauthenticated_hosts"></a> alb_ingress_unauthenticated_hostsUnauthenticated hosts to match in Hosts headerlist(string)[]no
<a name="input_alb_ingress_unauthenticated_listener_arns"></a> alb_ingress_unauthenticated_listener_arnsA list of unauthenticated ALB listener ARNs to attach ALB listener rules tolist(string)[]no
<a name="input_alb_ingress_unauthenticated_listener_arns_count"></a> alb_ingress_unauthenticated_listener_arns_countThe number of unauthenticated ARNs in alb_ingress_unauthenticated_listener_arns. This is necessary to work around a limitation in Terraform where counts cannot be computednumber0no
<a name="input_alb_ingress_unauthenticated_paths"></a> alb_ingress_unauthenticated_pathsUnauthenticated path pattern to match (a maximum of 1 can be defined)list(string)[]no
<a name="input_alb_security_group"></a> alb_security_groupSecurity group of the ALBstringn/ayes
<a name="input_alb_stickiness_cookie_duration"></a> alb_stickiness_cookie_durationThe time period, in seconds, during which requests from a client should be routed to the same target. After this time period expires, the load balancer-generated cookie is considered stale. The range is 1 second to 1 week (604800 seconds). The default value is 1 day (86400 seconds)number86400no
<a name="input_alb_stickiness_enabled"></a> alb_stickiness_enabledBoolean to enable / disable stickiness. Default is truebooltrueno
<a name="input_alb_stickiness_type"></a> alb_stickiness_typeThe type of sticky sessions. The only current possible value is lb_cookiestring"lb_cookie"no
<a name="input_alb_target_group_alarms_3xx_threshold"></a> alb_target_group_alarms_3xx_thresholdThe maximum number of 3XX HTTPCodes in a given period for ECS Servicenumber25no
<a name="input_alb_target_group_alarms_4xx_threshold"></a> alb_target_group_alarms_4xx_thresholdThe maximum number of 4XX HTTPCodes in a given period for ECS Servicenumber25no
<a name="input_alb_target_group_alarms_5xx_threshold"></a> alb_target_group_alarms_5xx_thresholdThe maximum number of 5XX HTTPCodes in a given period for ECS Servicenumber25no
<a name="input_alb_target_group_alarms_alarm_actions"></a> alb_target_group_alarms_alarm_actionsA list of ARNs (i.e. SNS Topic ARN) to execute when ALB Target Group alarms transition into an ALARM state from any other statelist(string)[]no
<a name="input_alb_target_group_alarms_enabled"></a> alb_target_group_alarms_enabledA boolean to enable/disable CloudWatch Alarms for ALB Target metricsboolfalseno
<a name="input_alb_target_group_alarms_evaluation_periods"></a> alb_target_group_alarms_evaluation_periodsThe number of periods to analyze for ALB CloudWatch Alarmsnumber1no
<a name="input_alb_target_group_alarms_insufficient_data_actions"></a> alb_target_group_alarms_insufficient_data_actionsA list of ARNs (i.e. SNS Topic ARN) to execute when ALB Target Group alarms transition into an INSUFFICIENT_DATA state from any other statelist(string)[]no
<a name="input_alb_target_group_alarms_ok_actions"></a> alb_target_group_alarms_ok_actionsA list of ARNs (i.e. SNS Topic ARN) to execute when ALB Target Group alarms transition into an OK state from any other statelist(string)[]no
<a name="input_alb_target_group_alarms_period"></a> alb_target_group_alarms_periodThe period (in seconds) to analyze for ALB CloudWatch Alarmsnumber300no
<a name="input_alb_target_group_alarms_response_time_threshold"></a> alb_target_group_alarms_response_time_thresholdThe maximum ALB Target Group response timenumber0.5no
<a name="input_assign_public_ip"></a> assign_public_ipAssign a public IP address to the ENI (Fargate launch type only). Valid values are true or false. Default falseboolfalseno
<a name="input_attributes"></a> attributesID element. Additional attributes (e.g. workers or cluster) to add to id,<br/>in the order they appear in the list. New attributes are appended to the<br/>end of the list. The elements of the list are joined by the delimiter<br/>and treated as a single ID element.list(string)[]no
<a name="input_authentication_cognito_scope"></a> authentication_cognito_scopeCognito scope, which should be a space separated string of requested scopes (see https://openid.net/specs/openid-connect-core-1_0.html#ScopeClaims)stringnullno
<a name="input_authentication_cognito_user_pool_arn"></a> authentication_cognito_user_pool_arnCognito User Pool ARNstring""no
<a name="input_authentication_cognito_user_pool_client_id"></a> authentication_cognito_user_pool_client_idCognito User Pool Client IDstring""no
<a name="input_authentication_cognito_user_pool_domain"></a> authentication_cognito_user_pool_domainCognito User Pool Domain. The User Pool Domain should be set to the domain prefix (xxx) instead of full domain (https://xxx.auth.us-west-2.amazoncognito.com)string""no
<a name="input_authentication_oidc_authorization_endpoint"></a> authentication_oidc_authorization_endpointOIDC Authorization Endpointstring""no
<a name="input_authentication_oidc_client_id"></a> authentication_oidc_client_idOIDC Client IDstring""no
<a name="input_authentication_oidc_client_secret"></a> authentication_oidc_client_secretOIDC Client Secretstring""no
<a name="input_authentication_oidc_issuer"></a> authentication_oidc_issuerOIDC Issuerstring""no
<a name="input_authentication_oidc_scope"></a> authentication_oidc_scopeOIDC scope, which should be a space separated string of requested scopes (see https://openid.net/specs/openid-connect-core-1_0.html#ScopeClaims, and https://developers.google.com/identity/protocols/oauth2/openid-connect#scope-param for an example set of scopes when using Google as the IdP)stringnullno
<a name="input_authentication_oidc_token_endpoint"></a> authentication_oidc_token_endpointOIDC Token Endpointstring""no
<a name="input_authentication_oidc_user_info_endpoint"></a> authentication_oidc_user_info_endpointOIDC User Info Endpointstring""no
<a name="input_authentication_type"></a> authentication_typeAuthentication type. Supported values are COGNITO and OIDCstring""no
<a name="input_autoscaling_dimension"></a> autoscaling_dimensionDimension to autoscale on (valid options: cpu, memory)string"memory"no
<a name="input_autoscaling_enabled"></a> autoscaling_enabledA boolean to enable/disable Autoscaling policy for ECS Serviceboolfalseno
<a name="input_autoscaling_max_capacity"></a> autoscaling_max_capacityMaximum number of running instances of a Servicenumber2no
<a name="input_autoscaling_min_capacity"></a> autoscaling_min_capacityMinimum number of running instances of a Servicenumber1no
<a name="input_autoscaling_scale_down_adjustment"></a> autoscaling_scale_down_adjustmentScaling adjustment to make during scale down eventnumber-1no
<a name="input_autoscaling_scale_down_cooldown"></a> autoscaling_scale_down_cooldownPeriod (in seconds) to wait between scale down eventsnumber300no
<a name="input_autoscaling_scale_up_adjustment"></a> autoscaling_scale_up_adjustmentScaling adjustment to make during scale up eventnumber1no
<a name="input_autoscaling_scale_up_cooldown"></a> autoscaling_scale_up_cooldownPeriod (in seconds) to wait between scale up eventsnumber60no
<a name="input_aws_logs_prefix"></a> aws_logs_prefixCustom AWS Logs prefix. If empty name from label module will be usedstring""no
<a name="input_aws_logs_region"></a> aws_logs_regionThe region for the AWS Cloudwatch Logs groupstringnullno
<a name="input_badge_enabled"></a> badge_enabledGenerates a publicly-accessible URL for the projects build badge. Available as badge_url attribute when enabledboolfalseno
<a name="input_branch"></a> branchBranch of the GitHub repository, e.g. masterstring""no
<a name="input_build_environment_variables"></a> build_environment_variablesA list of maps, that contain the keys 'name', 'value', and 'type' to be used as additional environment variables for the build. Valid types are 'PLAINTEXT', 'PARAMETER_STORE', or 'SECRETS_MANAGER'<pre>list(object(<br/> {<br/> name = string<br/> value = string<br/> type = string<br/> }))</pre>[]no
<a name="input_build_image"></a> build_imageDocker image for build environment, e.g. aws/codebuild/docker:docker:17.09.0string"aws/codebuild/docker:17.09.0"no
<a name="input_build_timeout"></a> build_timeoutHow long in minutes, from 5 to 480 (8 hours), for AWS CodeBuild to wait until timing out any related build that does not get marked as completednumber60no
<a name="input_buildspec"></a> buildspecDeclaration to use for building the project. For more infostring""no
<a name="input_capacity_provider_strategies"></a> capacity_provider_strategiesThe capacity provider strategies to use for the service. See capacity_provider_strategy configuration block: https://www.terraform.io/docs/providers/aws/r/ecs_service.html#capacity_provider_strategy<pre>list(object({<br/> capacity_provider = string<br/> weight = number<br/> base = number<br/> }))</pre>[]no
<a name="input_circuit_breaker_deployment_enabled"></a> circuit_breaker_deployment_enabledIf true, enable the deployment circuit breaker logic for the serviceboolfalseno
<a name="input_circuit_breaker_rollback_enabled"></a> circuit_breaker_rollback_enabledIf true, Amazon ECS will roll back the service if a service deployment failsboolfalseno
<a name="input_cloudwatch_log_group_enabled"></a> cloudwatch_log_group_enabledA boolean to disable cloudwatch log group creationbooltrueno
<a name="input_codebuild_cache_type"></a> codebuild_cache_typeThe type of storage that will be used for the AWS CodeBuild project cache. Valid values: NO_CACHE, LOCAL, and S3. Defaults to NO_CACHE. If cache_type is S3, it will create an S3 bucket for storing codebuild cache insidestring"S3"no
<a name="input_codepipeline_build_cache_bucket_suffix_enabled"></a> codepipeline_build_cache_bucket_suffix_enabledThe codebuild cache bucket generates a random 13 character string to generate a unique bucket name. If set to false it uses terraform-null-label's id value. It only works when cache_type is 'S3'booltrueno
<a name="input_codepipeline_build_compute_type"></a> codepipeline_build_compute_typeCodeBuild instance size. Possible values are: BUILD_GENERAL1_SMALL BUILD_GENERAL1_MEDIUM BUILD_GENERAL1_LARGEstring"BUILD_GENERAL1_SMALL"no
<a name="input_codepipeline_cdn_bucket_buildspec_identifier"></a> codepipeline_cdn_bucket_buildspec_identifierIdentifier for buildspec section controlling the optional CDN asset deployment.stringnullno
<a name="input_codepipeline_cdn_bucket_encryption_enabled"></a> codepipeline_cdn_bucket_encryption_enabledIf set to true, enable encryption on the optional CDN asset deployment bucketboolfalseno
<a name="input_codepipeline_cdn_bucket_id"></a> codepipeline_cdn_bucket_idOptional bucket for static asset deployment. If specified, the buildspec must include a secondary artifacts section which controls the files deployed to the bucket For more infostringnullno
<a name="input_codepipeline_enabled"></a> codepipeline_enabledA boolean to enable/disable AWS Codepipeline. If false, use ecr_enabled to control if AWS ECR stays enabled.booltrueno
<a name="input_codepipeline_s3_bucket_force_destroy"></a> codepipeline_s3_bucket_force_destroyA boolean that indicates all objects should be deleted from the CodePipeline artifact store S3 bucket so that the bucket can be destroyed without errorboolfalseno
<a name="input_command"></a> commandThe command that is passed to the containerlist(string)nullno
<a name="input_container_cpu"></a> container_cpuThe vCPU setting to control cpu limits of container. (If FARGATE launch type is used below, this must be a supported vCPU size from the table here: https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-cpu-memory-error.html)number256no
<a name="input_container_definition"></a> container_definitionOverride the main container_definitionstring""no
<a name="input_container_environment"></a> container_environmentThe environment variables to pass to the container. This is a list of maps<pre>list(object({<br/> name = string<br/> value = string<br/> }))</pre>nullno
<a name="input_container_image"></a> container_imageThe default container image to use in container definitionstring"cloudposse/default-backend"no
<a name="input_container_memory"></a> container_memoryThe amount of RAM to allow container to use in MB. (If FARGATE launch type is used below, this must be a supported Memory size from the table here: https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-cpu-memory-error.html)number512no
<a name="input_container_memory_reservation"></a> container_memory_reservationThe amount of RAM (Soft Limit) to allow container to use in MB. This value must be less than container_memory if setnumber128no
<a name="input_container_port"></a> container_portThe port number on the container bound to assigned host_portnumber80no
<a name="input_container_repo_credentials"></a> container_repo_credentialsContainer repository credentials; required when using a private repo. This map currently supports a single key; "credentialsParameter", which should be the ARN of a Secrets Manager's secret holding the credentialsmap(string)nullno
<a name="input_container_start_timeout"></a> container_start_timeoutTime duration (in seconds) to wait before giving up on resolving dependencies for a containernumber30no
<a name="input_container_stop_timeout"></a> container_stop_timeoutTime duration (in seconds) to wait before the container is forcefully killed if it doesn't exit normally on its ownnumber30no
<a name="input_context"></a> contextSingle object for setting entire context at once.<br/>See description of individual variables for details.<br/>Leave string and numeric variables as null to use default value.<br/>Individual variable settings (non-null) override settings in context object,<br/>except for attributes, tags, and additional_tag_map, which are merged.any<pre>{<br/> "additional_tag_map": {},<br/> "attributes": [],<br/> "delimiter": null,<br/> "descriptor_formats": {},<br/> "enabled": true,<br/> "environment": null,<br/> "id_length_limit": null,<br/> "label_key_case": null,<br/> "label_order": [],<br/> "label_value_case": null,<br/> "labels_as_tags": [<br/> "unset"<br/> ],<br/> "name": null,<br/> "namespace": null,<br/> "regex_replace_chars": null,<br/> "stage": null,<br/> "tags": {},<br/> "tenant": null<br/>}</pre>no
<a name="input_delimiter"></a> delimiterDelimiter to be used between ID elements.<br/>Defaults to - (hyphen). Set to "" to use no delimiter at all.stringnullno
<a name="input_deployment_controller_type"></a> deployment_controller_typeType of deployment controller. Valid values are CODE_DEPLOY and ECSstring"ECS"no
<a name="input_deployment_maximum_percent"></a> deployment_maximum_percentThe upper limit of the number of tasks (as a percentage of desired_count) that can be running in a service during a deploymentnumber200no
<a name="input_deployment_minimum_healthy_percent"></a> deployment_minimum_healthy_percentThe lower limit (as a percentage of desired_count) of the number of tasks that must remain running and healthy in a service during a deploymentnumber100no
<a name="input_descriptor_formats"></a> descriptor_formatsDescribe additional descriptors to be output in the descriptors output map.<br/>Map of maps. Keys are names of descriptors. Values are maps of the form<br/>{<br/> format = string<br/> labels = list(string)<br/>}<br/>(Type is any so the map values can later be enhanced to provide additional options.)<br/>format is a Terraform format string to be passed to the format() function.<br/>labels is a list of labels, in order, to pass to format() function.<br/>Label values will be normalized before being passed to format() so they will be<br/>identical to how they appear in id.<br/>Default is {} (descriptors output will be empty).any{}no
<a name="input_desired_count"></a> desired_countThe desired number of tasks to start with. Set this to 0 if using DAEMON Service type. (FARGATE does not suppoert DAEMON Service type)number1no
<a name="input_ecr_enabled"></a> ecr_enabledA boolean to enable/disable AWS ECRbooltrueno
<a name="input_ecr_image_tag_mutability"></a> ecr_image_tag_mutabilityThe tag mutability setting for the ecr repository. Must be one of: MUTABLE or IMMUTABLEstring"IMMUTABLE"no
<a name="input_ecr_scan_images_on_push"></a> ecr_scan_images_on_pushIndicates whether images are scanned after being pushed to the repository (true) or not (false)boolfalseno
<a name="input_ecs_alarms_cpu_utilization_high_alarm_actions"></a> ecs_alarms_cpu_utilization_high_alarm_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on CPU Utilization High Alarm actionlist(string)[]no
<a name="input_ecs_alarms_cpu_utilization_high_evaluation_periods"></a> ecs_alarms_cpu_utilization_high_evaluation_periodsNumber of periods to evaluate for the alarmnumber1no
<a name="input_ecs_alarms_cpu_utilization_high_ok_actions"></a> ecs_alarms_cpu_utilization_high_ok_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on CPU Utilization High OK actionlist(string)[]no
<a name="input_ecs_alarms_cpu_utilization_high_period"></a> ecs_alarms_cpu_utilization_high_periodDuration in seconds to evaluate for the alarmnumber300no
<a name="input_ecs_alarms_cpu_utilization_high_threshold"></a> ecs_alarms_cpu_utilization_high_thresholdThe maximum percentage of CPU utilization averagenumber80no
<a name="input_ecs_alarms_cpu_utilization_low_alarm_actions"></a> ecs_alarms_cpu_utilization_low_alarm_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on CPU Utilization Low Alarm actionlist(string)[]no
<a name="input_ecs_alarms_cpu_utilization_low_evaluation_periods"></a> ecs_alarms_cpu_utilization_low_evaluation_periodsNumber of periods to evaluate for the alarmnumber1no
<a name="input_ecs_alarms_cpu_utilization_low_ok_actions"></a> ecs_alarms_cpu_utilization_low_ok_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on CPU Utilization Low OK actionlist(string)[]no
<a name="input_ecs_alarms_cpu_utilization_low_period"></a> ecs_alarms_cpu_utilization_low_periodDuration in seconds to evaluate for the alarmnumber300no
<a name="input_ecs_alarms_cpu_utilization_low_threshold"></a> ecs_alarms_cpu_utilization_low_thresholdThe minimum percentage of CPU utilization averagenumber20no
<a name="input_ecs_alarms_enabled"></a> ecs_alarms_enabledA boolean to enable/disable CloudWatch Alarms for ECS Service metricsboolfalseno
<a name="input_ecs_alarms_memory_utilization_high_alarm_actions"></a> ecs_alarms_memory_utilization_high_alarm_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on Memory Utilization High Alarm actionlist(string)[]no
<a name="input_ecs_alarms_memory_utilization_high_evaluation_periods"></a> ecs_alarms_memory_utilization_high_evaluation_periodsNumber of periods to evaluate for the alarmnumber1no
<a name="input_ecs_alarms_memory_utilization_high_ok_actions"></a> ecs_alarms_memory_utilization_high_ok_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on Memory Utilization High OK actionlist(string)[]no
<a name="input_ecs_alarms_memory_utilization_high_period"></a> ecs_alarms_memory_utilization_high_periodDuration in seconds to evaluate for the alarmnumber300no
<a name="input_ecs_alarms_memory_utilization_high_threshold"></a> ecs_alarms_memory_utilization_high_thresholdThe maximum percentage of Memory utilization averagenumber80no
<a name="input_ecs_alarms_memory_utilization_low_alarm_actions"></a> ecs_alarms_memory_utilization_low_alarm_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on Memory Utilization Low Alarm actionlist(string)[]no
<a name="input_ecs_alarms_memory_utilization_low_evaluation_periods"></a> ecs_alarms_memory_utilization_low_evaluation_periodsNumber of periods to evaluate for the alarmnumber1no
<a name="input_ecs_alarms_memory_utilization_low_ok_actions"></a> ecs_alarms_memory_utilization_low_ok_actionsA list of ARNs (i.e. SNS Topic ARN) to notify on Memory Utilization Low OK actionlist(string)[]no
<a name="input_ecs_alarms_memory_utilization_low_period"></a> ecs_alarms_memory_utilization_low_periodDuration in seconds to evaluate for the alarmnumber300no
<a name="input_ecs_alarms_memory_utilization_low_threshold"></a> ecs_alarms_memory_utilization_low_thresholdThe minimum percentage of Memory utilization averagenumber20no
<a name="input_ecs_cluster_arn"></a> ecs_cluster_arnThe ECS Cluster ARN where ECS Service will be provisionedstringn/ayes
<a name="input_ecs_cluster_name"></a> ecs_cluster_nameThe ECS Cluster Name to use in ECS Code Pipeline Deployment stepstringnullno
<a name="input_ecs_private_subnet_ids"></a> ecs_private_subnet_idsList of Private Subnet IDs to provision ECS Service onto if var.network_mode = "awsvpc"list(string)n/ayes
<a name="input_ecs_security_group_enabled"></a> ecs_security_group_enabledWhether to create a security group for the service.booltrueno
<a name="input_ecs_security_group_ids"></a> ecs_security_group_idsAdditional Security Group IDs to allow into ECS Service if var.network_mode = "awsvpc"list(string)[]no
<a name="input_enable_all_egress_rule"></a> enable_all_egress_ruleA flag to enable/disable adding the all ports egress rule to the ECS security groupbooltrueno
<a name="input_enable_ecs_managed_tags"></a> enable_ecs_managed_tagsSpecifies whether to enable Amazon ECS managed tags for the tasks within the serviceboolfalseno
<a name="input_enabled"></a> enabledSet to false to prevent the module from creating any resourcesboolnullno
<a name="input_entrypoint"></a> entrypointThe entry point that is passed to the containerlist(string)nullno
<a name="input_environment"></a> environmentID element. Usually used for region e.g. 'uw2', 'us-west-2', OR role 'prod', 'staging', 'dev', 'UAT'stringnullno
<a name="input_exec_enabled"></a> exec_enabledSpecifies whether to enable Amazon ECS Exec for the tasks within the serviceboolfalseno
<a name="input_force_new_deployment"></a> force_new_deploymentEnable to force a new task deployment of the service.boolfalseno
<a name="input_github_oauth_token"></a> github_oauth_tokenGitHub Oauth Token with permissions to access private repositoriesstring""no
<a name="input_github_webhook_events"></a> github_webhook_eventsA list of events which should trigger the webhook. See a list of available eventslist(string)<pre>[<br/> "push"<br/>]</pre>no
<a name="input_health_check_grace_period_seconds"></a> health_check_grace_period_secondsSeconds to ignore failing load balancer health checks on newly instantiated tasks to prevent premature shutdown, up to 7200. Only valid for services configured to use load balancersnumber0no
<a name="input_healthcheck"></a> healthcheckA map containing command (string), timeout, interval (duration in seconds), retries (1-10, number of times to retry before marking container unhealthy), and startPeriod (0-300, optional grace period to wait, in seconds, before failed healthchecks count toward retries)<pre>object({<br/> command = list(string)<br/> retries = number<br/> timeout = number<br/> interval = number<br/> startPeriod = number<br/> })</pre>nullno
<a name="input_id_length_limit"></a> id_length_limitLimit id to this many characters (minimum 6).<br/>Set to 0 for unlimited length.<br/>Set to null for keep the existing setting, which defaults to 0.<br/>Does not affect id_full.numbernullno
<a name="input_ignore_changes_desired_count"></a> ignore_changes_desired_countWhether to ignore changes for desired count in the ECS serviceboolfalseno
<a name="input_ignore_changes_task_definition"></a> ignore_changes_task_definitionIgnore changes (like environment variables) to the ECS task definitionbooltrueno
<a name="input_init_containers"></a> init_containersA list of additional init containers to start. The map contains the container_definition (JSON) and the main container's dependency condition (string) on the init container. The latter can be one of START, COMPLETE, SUCCESS, HEALTHY, or null. If null, the init container will not be added to the depends_on list of the main container.<pre>list(object({<br/> container_definition = any<br/> condition = string<br/> }))</pre>[]no
<a name="input_label_key_case"></a> label_key_caseControls the letter case of the tags keys (label names) for tags generated by this module.<br/>Does not affect keys of tags passed in via the tags input.<br/>Possible values: lower, title, upper.<br/>Default value: title.stringnullno
<a name="input_label_order"></a> label_orderThe order in which the labels (ID elements) appear in the id.<br/>Defaults to ["namespace", "environment", "stage", "name", "attributes"].<br/>You can omit any of the 6 labels ("tenant" is the 6th), but at least one must be present.list(string)nullno
<a name="input_label_value_case"></a> label_value_caseControls the letter case of ID elements (labels) as included in id,<br/>set as tag values, and output by this module individually.<br/>Does not affect values of tags passed in via the tags input.<br/>Possible values: lower, title, upper and none (no transformation).<br/>Set this to title and set delimiter to "" to yield Pascal Case IDs.<br/>Default value: lower.stringnullno
<a name="input_labels_as_tags"></a> labels_as_tagsSet of labels (ID elements) to include as tags in the tags output.<br/>Default is to include all labels.<br/>Tags with empty values will not be included in the tags output.<br/>Set to [] to suppress all generated tags.<br/>Notes:<br/> The value of the name tag, if included, will be the id, not the name.<br/> Unlike other null-label inputs, the initial setting of labels_as_tags cannot be<br/> changed in later chained modules. Attempts to change it will be silently ignored.set(string)<pre>[<br/> "default"<br/>]</pre>no
<a name="input_launch_type"></a> launch_typeThe ECS launch type (valid options: FARGATE or EC2)string"FARGATE"no
<a name="input_linux_parameters"></a> linux_parametersLinux-specific modifications that are applied to the container, such as Linux kernel capabilities. For more details, see https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_LinuxParameters.html<pre>object({<br/> capabilities = optional(object({<br/> add = optional(list(string))<br/> drop = optional(list(string))<br/> }))<br/> devices = optional(list(object({<br/> containerPath = optional(string)<br/> hostPath = optional(string)<br/> permissions = optional(list(string))<br/> })))<br/> initProcessEnabled = optional(bool)<br/> maxSwap = optional(number)<br/> sharedMemorySize = optional(number)<br/> swappiness = optional(number)<br/> tmpfs = optional(list(object({<br/> containerPath = optional(string)<br/> mountOptions = optional(list(string))<br/> size = number<br/> })))<br/> })</pre>{}no
<a name="input_log_driver"></a> log_driverThe log driver to use for the container. If using Fargate launch type, only supported value is awslogsstring"awslogs"no
<a name="input_log_retention_in_days"></a> log_retention_in_daysThe number of days to retain logs for the log groupnumber90no
<a name="input_map_container_environment"></a> map_container_environmentThe environment variables to pass to the container. This is a map of string: {key: value}. environment overrides map_environmentmap(string)nullno
<a name="input_mount_points"></a> mount_pointsContainer mount points. This is a list of maps, where each map should contain a containerPath and sourceVolume<pre>list(object({<br/> containerPath = string<br/> sourceVolume = string<br/> readOnly = bool<br/> }))</pre>[]no
<a name="input_name"></a> nameID element. Usually the component or solution name, e.g. 'app' or 'jenkins'.<br/>This is the only ID element not also included as a tag.<br/>The "name" tag is set to the full id string. There is no tag with the value of the name input.stringnullno
<a name="input_namespace"></a> namespaceID element. Usually an abbreviation of your organization name, e.g. 'eg' or 'cp', to help ensure generated IDs are globally uniquestringnullno
<a name="input_network_mode"></a> network_modeThe network mode to use for the task. This is required to be awsvpc for FARGATE launch_type or null for EC2 launch_typestring"awsvpc"no
<a name="input_nlb_cidr_blocks"></a> nlb_cidr_blocksA list of CIDR blocks to add to the ingress rule for the NLB container portlist(string)[]no
<a name="input_nlb_container_name"></a> nlb_container_nameThe name of the container to associate with the NLB. If not provided, the generated container will be usedstringnullno
<a name="input_nlb_container_port"></a> nlb_container_portThe port number on the container bound to assigned NLB host_portnumber80no
<a name="input_nlb_ingress_target_group_arn"></a> nlb_ingress_target_group_arnTarget group ARN of the NLB ingressstring""no
<a name="input_permissions_boundary"></a> permissions_boundaryA permissions boundary ARN to apply to the 3 roles that are created.string""no
<a name="input_platform_version"></a> platform_versionThe platform version on which to run your service. Only applicable for launch_type set to FARGATE. More information about Fargate platform versions can be found in the AWS ECS User Guide.string"LATEST"no
<a name="input_poll_source_changes"></a> poll_source_changesPeriodically check the location of your source content and run the pipeline if changes are detectedboolfalseno
<a name="input_port_mappings"></a> port_mappingsThe port mappings to configure for the container. This is a list of maps. Each map should contain "containerPort", "hostPort", and "protocol", where "protocol" is one of "tcp" or "udp". If using containers in a task with the awsvpc or host network mode, the hostPort can either be left blank or set to the same value as the containerPort<pre>list(object({<br/> containerPort = number<br/> hostPort = number<br/> protocol = string<br/> }))</pre><pre>[<br/> {<br/> "containerPort": 80,<br/> "hostPort": 80,<br/> "protocol": "tcp"<br/> }<br/>]</pre>no
<a name="input_privileged"></a> privilegedWhen this variable is true, the container is given elevated privileges on the host container instance (similar to the root user). This parameter is not supported for Windows containers or tasks using the Fargate launch type. Due to how Terraform type casts booleans in json it is required to double quote this valuestringnullno
<a name="input_propagate_tags"></a> propagate_tagsSpecifies whether to propagate the tags from the task definition or the service to the tasks. The valid values are SERVICE and TASK_DEFINITIONstringnullno
<a name="input_regex_replace_chars"></a> regex_replace_charsTerraform regular expression (regex) string.<br/>Characters matching the regex will be removed from the ID elements.<br/>If not set, "/[^a-zA-Z0-9-]/" is used to remove all characters other than hyphens, letters and digits.stringnullno
<a name="input_region"></a> regionAWS Region for S3 bucketstringnullno
<a name="input_repo_name"></a> repo_nameGitHub repository name of the application to be built and deployed to ECSstring""no
<a name="input_repo_owner"></a> repo_ownerGitHub Organization or Usernamestring""no
<a name="input_runtime_platform"></a> runtime_platformZero or one runtime platform configurations that containers in your task may use.<br/>Map of strings with optional keys operating_system_family and cpu_architecture.<br/>See runtime_platform docs https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_task_definition#runtime_platformlist(map(string))[]no
<a name="input_secrets"></a> secretsThe secrets to pass to the container. This is a list of maps<pre>list(object({<br/> name = string<br/> valueFrom = string<br/> }))</pre>nullno
<a name="input_service_registries"></a> service_registriesThe service discovery registries for the service. The maximum number of service_registries blocks is 1. The currently supported service registry is Amazon Route 53 Auto Naming Service - aws_service_discovery_service; see service_registries docs https://www.terraform.io/docs/providers/aws/r/ecs_service.html#service_registries-1<pre>list(object({<br/> registry_arn = string<br/> port = number<br/> container_name = string<br/> container_port = number<br/> }))</pre>[]no
<a name="input_stage"></a> stageID element. Usually used to indicate role, e.g. 'prod', 'staging', 'source', 'build', 'test', 'deploy', 'release'stringnullno
<a name="input_system_controls"></a> system_controlsA list of namespaced kernel parameters to set in the container, mapping to the --sysctl option to docker run. This is a list of maps: { namespace = "", value = ""}list(map(string))nullno
<a name="input_tags"></a> tagsAdditional tags (e.g. {'BusinessUnit': 'XYZ'}).<br/>Neither the tag keys nor the tag values will be modified by this module.map(string){}no
<a name="input_task_cpu"></a> task_cpuThe number of CPU units used by the task. If unspecified, it will default to container_cpu. If using FARGATE launch type task_cpu must match supported memory values (https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html#task_size)numbernullno
<a name="input_task_memory"></a> task_memoryThe amount of memory (in MiB) used by the task. If unspecified, it will default to container_memory. If using Fargate launch type task_memory must match supported cpu value (https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html#task_size)numbernullno
<a name="input_task_policy_arns"></a> task_policy_arnsA list of IAM Policy ARNs to attach to the generated task role.list(string)[]no
<a name="input_task_role_arn"></a> task_role_arnThe ARN of IAM role that allows your Amazon ECS container task to make calls to other AWS servicesstring""no
<a name="input_tenant"></a> tenantID element _(Rarely used, not included by default)_. A customer identifier, indicating who this instance of a resource is forstringnullno
<a name="input_ulimits"></a> ulimitsThe ulimits to configure for the container. This is a list of maps. Each map should contain "name", "softLimit" and "hardLimit"<pre>list(object({<br/> name = string<br/> softLimit = number<br/> hardLimit = number<br/> }))</pre>[]no
<a name="input_use_alb_security_group"></a> use_alb_security_groupA boolean to enable adding an ALB security group rule for the service taskboolfalseno
<a name="input_use_ecr_image"></a> use_ecr_imageIf true, use ECR repo URL for image, otherwise use value in container_imageboolfalseno
<a name="input_use_nlb_cidr_blocks"></a> use_nlb_cidr_blocksA flag to enable/disable adding the NLB ingress rule to the security groupboolfalseno
<a name="input_volumes"></a> volumesTask volume definitions as list of configuration objects<pre>list(object({<br/> host_path = string<br/> name = string<br/> docker_volume_configuration = list(object({<br/> autoprovision = bool<br/> driver = string<br/> driver_opts = map(string)<br/> labels = map(string)<br/> scope = string<br/> }))<br/> efs_volume_configuration = list(object({<br/> file_system_id = string<br/> root_directory = string<br/> transit_encryption = string<br/> transit_encryption_port = string<br/> authorization_config = list(object({<br/> access_point_id = string<br/> iam = string<br/> }))<br/> }))<br/> }))</pre>[]no
<a name="input_vpc_id"></a> vpc_idThe VPC ID where resources are createdstringn/ayes
<a name="input_webhook_authentication"></a> webhook_authenticationThe type of authentication to use. One of IP, GITHUB_HMAC, or UNAUTHENTICATEDstring"GITHUB_HMAC"no
<a name="input_webhook_enabled"></a> webhook_enabledSet to false to prevent the module from creating any webhook resourcesbooltrueno
<a name="input_webhook_filter_json_path"></a> webhook_filter_json_pathThe JSON path to filter onstring"$.ref"no
<a name="input_webhook_filter_match_equals"></a> webhook_filter_match_equalsThe value to match on (e.g. refs/heads/{Branch})string"refs/heads/{Branch}"no
<a name="input_webhook_target_action"></a> webhook_target_actionThe name of the action in a pipeline you want to connect to the webhook. The action must be from the source (first) stage of the pipelinestring"Source"no

Outputs

NameDescription
<a name="output_alb_ingress"></a> alb_ingressAll outputs from module.alb_ingress
<a name="output_alb_ingress_target_group_arn"></a> alb_ingress_target_group_arnALB Target Group ARN
<a name="output_alb_ingress_target_group_arn_suffix"></a> alb_ingress_target_group_arn_suffixALB Target Group ARN suffix
<a name="output_alb_ingress_target_group_name"></a> alb_ingress_target_group_nameALB Target Group name
<a name="output_alb_target_group_cloudwatch_sns_alarms"></a> alb_target_group_cloudwatch_sns_alarmsAll outputs from module.alb_target_group_cloudwatch_sns_alarms
<a name="output_cloudwatch_log_group"></a> cloudwatch_log_groupAll outputs from aws_cloudwatch_log_group.app
<a name="output_cloudwatch_log_group_arn"></a> cloudwatch_log_group_arnCloudwatch log group ARN
<a name="output_cloudwatch_log_group_name"></a> cloudwatch_log_group_nameCloudwatch log group name
<a name="output_codebuild"></a> codebuildAll outputs from module.ecs_codepipeline
<a name="output_codebuild_badge_url"></a> codebuild_badge_urlThe URL of the build badge when badge_enabled is enabled
<a name="output_codebuild_cache_bucket_arn"></a> codebuild_cache_bucket_arnCodeBuild cache S3 bucket ARN
<a name="output_codebuild_cache_bucket_name"></a> codebuild_cache_bucket_nameCodeBuild cache S3 bucket name
<a name="output_codebuild_project_id"></a> codebuild_project_idCodeBuild project ID
<a name="output_codebuild_project_name"></a> codebuild_project_nameCodeBuild project name
<a name="output_codebuild_role_arn"></a> codebuild_role_arnCodeBuild IAM Role ARN
<a name="output_codebuild_role_id"></a> codebuild_role_idCodeBuild IAM Role ID
<a name="output_codepipeline_arn"></a> codepipeline_arnCodePipeline ARN
<a name="output_codepipeline_id"></a> codepipeline_idCodePipeline ID
<a name="output_codepipeline_webhook_id"></a> codepipeline_webhook_idThe CodePipeline webhook's ID
<a name="output_codepipeline_webhook_url"></a> codepipeline_webhook_urlThe CodePipeline webhook's URL. POST events to this endpoint to trigger the target
<a name="output_container_definition"></a> container_definitionAll outputs from module.container_definition
<a name="output_container_definition_json"></a> container_definition_jsonJSON encoded list of container definitions for use with other terraform resources such as aws_ecs_task_definition
<a name="output_container_definition_json_map"></a> container_definition_json_mapJSON encoded container definitions for use with other terraform resources such as aws_ecs_task_definition
<a name="output_ecr"></a> ecrAll outputs from module.ecr
<a name="output_ecr_registry_id"></a> ecr_registry_idRegistry ID
<a name="output_ecr_registry_url"></a> ecr_registry_urlRepository URL
<a name="output_ecr_repository_arn"></a> ecr_repository_arnARN of ECR repository
<a name="output_ecr_repository_name"></a> ecr_repository_nameRegistry name
<a name="output_ecr_repository_url"></a> ecr_repository_urlRepository URL
<a name="output_ecs_alarms"></a> ecs_alarmsAll outputs from module.ecs_cloudwatch_sns_alarms
<a name="output_ecs_alarms_cpu_utilization_high_cloudwatch_metric_alarm_arn"></a> ecs_alarms_cpu_utilization_high_cloudwatch_metric_alarm_arnECS CPU utilization high CloudWatch metric alarm ARN
<a name="output_ecs_alarms_cpu_utilization_high_cloudwatch_metric_alarm_id"></a> ecs_alarms_cpu_utilization_high_cloudwatch_metric_alarm_idECS CPU utilization high CloudWatch metric alarm ID
<a name="output_ecs_alarms_cpu_utilization_low_cloudwatch_metric_alarm_arn"></a> ecs_alarms_cpu_utilization_low_cloudwatch_metric_alarm_arnECS CPU utilization low CloudWatch metric alarm ARN
<a name="output_ecs_alarms_cpu_utilization_low_cloudwatch_metric_alarm_id"></a> ecs_alarms_cpu_utilization_low_cloudwatch_metric_alarm_idECS CPU utilization low CloudWatch metric alarm ID
<a name="output_ecs_alarms_memory_utilization_high_cloudwatch_metric_alarm_arn"></a> ecs_alarms_memory_utilization_high_cloudwatch_metric_alarm_arnECS Memory utilization high CloudWatch metric alarm ARN
<a name="output_ecs_alarms_memory_utilization_high_cloudwatch_metric_alarm_id"></a> ecs_alarms_memory_utilization_high_cloudwatch_metric_alarm_idECS Memory utilization high CloudWatch metric alarm ID
<a name="output_ecs_alarms_memory_utilization_low_cloudwatch_metric_alarm_arn"></a> ecs_alarms_memory_utilization_low_cloudwatch_metric_alarm_arnECS Memory utilization low CloudWatch metric alarm ARN
<a name="output_ecs_alarms_memory_utilization_low_cloudwatch_metric_alarm_id"></a> ecs_alarms_memory_utilization_low_cloudwatch_metric_alarm_idECS Memory utilization low CloudWatch metric alarm ID
<a name="output_ecs_alb_service_task"></a> ecs_alb_service_taskAll outputs from module.ecs_alb_service_task
<a name="output_ecs_cloudwatch_autoscaling"></a> ecs_cloudwatch_autoscalingAll outputs from module.ecs_cloudwatch_autoscaling
<a name="output_ecs_cloudwatch_autoscaling_scale_down_policy_arn"></a> ecs_cloudwatch_autoscaling_scale_down_policy_arnARN of the scale down policy
<a name="output_ecs_cloudwatch_autoscaling_scale_up_policy_arn"></a> ecs_cloudwatch_autoscaling_scale_up_policy_arnARN of the scale up policy
<a name="output_ecs_exec_role_policy_id"></a> ecs_exec_role_policy_idThe ECS service role policy ID, in the form of role_name:role_policy_name
<a name="output_ecs_exec_role_policy_name"></a> ecs_exec_role_policy_nameECS service role name
<a name="output_ecs_service_arn"></a> ecs_service_arnECS Service ARN
<a name="output_ecs_service_name"></a> ecs_service_nameECS Service name
<a name="output_ecs_service_role_arn"></a> ecs_service_role_arnECS Service role ARN
<a name="output_ecs_service_security_group_id"></a> ecs_service_security_group_idSecurity Group ID of the ECS task
<a name="output_ecs_task_definition_family"></a> ecs_task_definition_familyECS task definition family
<a name="output_ecs_task_definition_revision"></a> ecs_task_definition_revisionECS task definition revision
<a name="output_ecs_task_exec_role_arn"></a> ecs_task_exec_role_arnECS Task exec role ARN
<a name="output_ecs_task_exec_role_name"></a> ecs_task_exec_role_nameECS Task role name
<a name="output_ecs_task_role_arn"></a> ecs_task_role_arnECS Task role ARN
<a name="output_ecs_task_role_id"></a> ecs_task_role_idECS Task role id
<a name="output_ecs_task_role_name"></a> ecs_task_role_nameECS Task role name
<a name="output_httpcode_elb_5xx_count_cloudwatch_metric_alarm_arn"></a> httpcode_elb_5xx_count_cloudwatch_metric_alarm_arnALB 5xx count CloudWatch metric alarm ARN
<a name="output_httpcode_elb_5xx_count_cloudwatch_metric_alarm_id"></a> httpcode_elb_5xx_count_cloudwatch_metric_alarm_idALB 5xx count CloudWatch metric alarm ID
<a name="output_httpcode_target_3xx_count_cloudwatch_metric_alarm_arn"></a> httpcode_target_3xx_count_cloudwatch_metric_alarm_arnALB Target Group 3xx count CloudWatch metric alarm ARN
<a name="output_httpcode_target_3xx_count_cloudwatch_metric_alarm_id"></a> httpcode_target_3xx_count_cloudwatch_metric_alarm_idALB Target Group 3xx count CloudWatch metric alarm ID
<a name="output_httpcode_target_4xx_count_cloudwatch_metric_alarm_arn"></a> httpcode_target_4xx_count_cloudwatch_metric_alarm_arnALB Target Group 4xx count CloudWatch metric alarm ARN
<a name="output_httpcode_target_4xx_count_cloudwatch_metric_alarm_id"></a> httpcode_target_4xx_count_cloudwatch_metric_alarm_idALB Target Group 4xx count CloudWatch metric alarm ID
<a name="output_httpcode_target_5xx_count_cloudwatch_metric_alarm_arn"></a> httpcode_target_5xx_count_cloudwatch_metric_alarm_arnALB Target Group 5xx count CloudWatch metric alarm ARN
<a name="output_httpcode_target_5xx_count_cloudwatch_metric_alarm_id"></a> httpcode_target_5xx_count_cloudwatch_metric_alarm_idALB Target Group 5xx count CloudWatch metric alarm ID
<a name="output_target_response_time_average_cloudwatch_metric_alarm_arn"></a> target_response_time_average_cloudwatch_metric_alarm_arnALB Target Group response time average CloudWatch metric alarm ARN
<a name="output_target_response_time_average_cloudwatch_metric_alarm_id"></a> target_response_time_average_cloudwatch_metric_alarm_idALB Target Group response time average CloudWatch metric alarm ID
<!-- markdownlint-restore -->

Related Projects

Check out these related projects.

[!TIP]

Use Terraform Reference Architectures for AWS

Use Cloud Posse's ready-to-go terraform architecture blueprints for AWS to get up and running quickly.

βœ… We build it together with your team.<br/> βœ… Your team owns everything.<br/> βœ… 100% Open Source and backed by fanatical support.<br/>

<a href="https://cpco.io/commercial-support?utm_source=github&utm_medium=readme&utm_campaign=cloudposse/terraform-aws-ecs-web-app&utm_content=commercial_support"><img alt="Request Quote" src="https://img.shields.io/badge/request%20quote-success.svg?style=for-the-badge"/></a>

<details><summary>πŸ“š <strong>Learn More</strong></summary> <br/>

Cloud Posse is the leading DevOps Accelerator for funded startups and enterprises.

Your team can operate like a pro today.

Ensure that your team succeeds by using Cloud Posse's proven process and turnkey blueprints. Plus, we stick around until you succeed.

Day-0: Your Foundation for Success

<a href="https://cpco.io/commercial-support?utm_source=github&utm_medium=readme&utm_campaign=cloudposse/terraform-aws-ecs-web-app&utm_content=commercial_support"><img alt="Request Quote" src="https://img.shields.io/badge/request%20quote-success.svg?style=for-the-badge"/></a>

Day-2: Your Operational Mastery

<a href="https://cpco.io/commercial-support?utm_source=github&utm_medium=readme&utm_campaign=cloudposse/terraform-aws-ecs-web-app&utm_content=commercial_support"><img alt="Request Quote" src="https://img.shields.io/badge/request%20quote-success.svg?style=for-the-badge"/></a>

</details>

✨ Contributing

This project is under active development, and we encourage contributions from our community.

Many thanks to our outstanding contributors:

<a href="https://github.com/cloudposse/terraform-aws-ecs-web-app/graphs/contributors"> <img src="https://contrib.rocks/image?repo=cloudposse/terraform-aws-ecs-web-app&max=24" /> </a>

For πŸ› bug reports & feature requests, please use the issue tracker.

In general, PRs are welcome. We follow the typical "fork-and-pull" Git workflow.

  1. Review our Code of Conduct and Contributor Guidelines.
  2. Fork the repo on GitHub
  3. Clone the project to your own machine
  4. Commit changes to your own branch
  5. Push your work back up to your fork
  6. Submit a Pull Request so that we can review your changes

NOTE: Be sure to merge the latest changes from "upstream" before making a pull request!

🌎 Slack Community

Join our Open Source Community on Slack. It's FREE for everyone! Our "SweetOps" community is where you get to talk with others who share a similar vision for how to rollout and manage infrastructure. This is the best place to talk shop, ask questions, solicit feedback, and work together as a community to build totally sweet infrastructure.

πŸ“° Newsletter

Sign up for our newsletter and join 3,000+ DevOps engineers, CTOs, and founders who get insider access to the latest DevOps trends, so you can always stay in the know. Dropped straight into your Inbox every week β€” and usually a 5-minute read.

πŸ“† Office Hours <a href="https://cloudposse.com/office-hours?utm_source=github&utm_medium=readme&utm_campaign=cloudposse/terraform-aws-ecs-web-app&utm_content=office_hours"><img src="https://img.cloudposse.com/fit-in/200x200/https://cloudposse.com/wp-content/uploads/2019/08/Powered-by-Zoom.png" align="right" /></a>

Join us every Wednesday via Zoom for your weekly dose of insider DevOps trends, AWS news and Terraform insights, all sourced from our SweetOps community, plus a live Q&A that you can’t find anywhere else. It's FREE for everyone!

License

<a href="https://opensource.org/licenses/Apache-2.0"><img src="https://img.shields.io/badge/License-Apache%202.0-blue.svg?style=for-the-badge" alt="License"></a>

<details> <summary>Preamble to the Apache License, Version 2.0</summary> <br/> <br/>

Complete license is available in the LICENSE file.

Licensed to the Apache Software Foundation (ASF) under one
or more contributor license agreements.  See the NOTICE file
distributed with this work for additional information
regarding copyright ownership.  The ASF licenses this file
to you under the Apache License, Version 2.0 (the
"License"); you may not use this file except in compliance
with the License.  You may obtain a copy of the License at

  https://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing,
software distributed under the License is distributed on an
"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
KIND, either express or implied.  See the License for the
specific language governing permissions and limitations
under the License.
</details>

Trademarks

All other trademarks referenced herein are the property of their respective owners.


Copyright Β© 2017-2024 Cloud Posse, LLC

<a href="https://cloudposse.com/readme/footer/link?utm_source=github&utm_medium=readme&utm_campaign=cloudposse/terraform-aws-ecs-web-app&utm_content=readme_footer_link"><img alt="README footer" src="https://cloudposse.com/readme/footer/img"/></a>

<img alt="Beacon" width="0" src="https://ga-beacon.cloudposse.com/UA-76589703-4/cloudposse/terraform-aws-ecs-web-app?pixel&cs=github&cm=readme&an=terraform-aws-ecs-web-app"/>