AgentSkillsCN

whirlwind-terraform-infrastructure

为 Whirlwind 核心堆栈(VPC、EC2、RDS、S3、SSM、Secrets Manager,以及适用于 Ansible 的 CI/CD)构建 Terraform 基础设施。适用于在此仓库中修改模块、输入参数、输出配置,或调整 CI/CD 配置时使用。

SKILL.md
--- frontmatter
name: whirlwind-terraform-infrastructure
description: Terraform infrastructure for the Whirlwind core stack (VPC, EC2, RDS, S3, SSM, Secrets Manager, and CI/CD for Ansible). Use when changing modules, inputs, outputs, or CI/CD wiring in this repo.

Whirlwind Terraform Infrastructure

Overview

Provision the core AWS stack that hosts the EC2 core node, RDS Postgres, S3 storage, and the CodePipeline and CodeBuild pipeline that runs Ansible from GitHub.

Standard workflow

  1. Set input values in terraform.tfvars or via -var.
  2. Run terraform init.
  3. Run terraform plan and review.
  4. Run terraform apply.

Key modules

  • modules/network for VPC, subnets, routing, and security groups.
  • modules/compute for EC2 and IAM role.
  • modules/database for RDS and KMS.
  • modules/storage for S3.
  • modules/env for SSM Parameter Store and Secrets Manager values.
  • modules/cicd for CodePipeline and CodeBuild.

Integration contracts

  • Ansible pipeline relies on SSM Parameter Store for non-secrets and Secrets Manager for secrets.
  • DNS-01 automation relies on the shared networking DNS-01 role ARN provided as an input.
  • CodeStar connection may require manual approval in the AWS console after creation.

References

  • references/modules.md
  • references/inputs.md
  • references/cicd-ansible.md
  • references/dns01-integration.md
  • references/module-interfaces.md
  • references/outputs.md
  • references/buildspec-ansible-runner.md
  • references/architecture-summary.md
  • references/module-network.md
  • references/module-compute.md
  • references/module-cicd.md
  • references/module-storage.md
  • references/module-database.md
  • references/module-env.md
  • references/root-module-io.md