6 messages
Discussions related to https://github.com/cloudposse/geodesic
Archive: https://archive.sweetops.com/geodesic/
Mathieu SERRAabout 5 years ago
Hi Everyone. I'm trying to reproduce your architecture for a test project. I'm succeded in using atmos. Very helfpful tool. But I'm bit struggling to get the differences between the "iam-primary-role" and "iam-delegated-roles" modules in https://github.com/cloudposse/terraform-aws-components . If I correctly understand , the "iam-primary-role" need to be only run on root account and the "iam-delegated-role" on all other account. Is that correct ? Second question related to the first one. In the "iam-primary-role" you two have two variables
delegated_roles_config and primary_roles_config . I've noticed that this two variables are merged together to create roles. My question is when I need to use the first one and when I need to use the second one. I see too that delegated_roles_config varaible is use by "iam-delegated-modules" by reading the tfstate output of "iam-primary-role". Thanks for your help and your workD
Dan Meyersabout 5 years ago
@Dan Meyers has joined the channel
RBabout 5 years ago
im a geodesic noob. how does one run it ?
both fail
docker run -it cloudposse/geodesic
docker run -it cloudposse/geodesic bashboth fail
Michael Dizonabout 5 years ago
in a workflow, is it possible to use the outputs from terraform as inputs for helm?
Robert Horroxabout 5 years ago
@Erik Osterman (Cloud Posse) Dropping this here for reference, with the latest version of Docker Desktop for Mac you can run into a high cpu issue when mounting the home directory (https://github.com/docker/for-mac/issues/5200). Disabling the GRPC Fuse filesystem make the CPU issue go away.
Mathieu SERRAalmost 5 years ago(edited)
Hi everyone,
I have a question regarding all modules in
But this module need other information to access remote state of account-map. Like the account id, the namespace or the bucket envirnoment_name. I think someting like that can work:
Or maybe you have a way in atmos to pass this variables to the module directly.
Thanks
I have a question regarding all modules in
aws-terraform-component. In most of this modules you require the module iam-roles. But you call it with few parameters:module "iam_roles" {
source = "../account-map/modules/iam-roles"
stage = var.stage
assume_role = false
region = var.region
}But this module need other information to access remote state of account-map. Like the account id, the namespace or the bucket envirnoment_name. I think someting like that can work:
module "iam_roles" {
source = "../account-map/modules/iam-roles"
stage = var.stage
tfstate_assume_role = false
tfstate_bucket_environment_name = var.tfstate_bucket_environment_name
region = var.region
context = module.this.context
tfstate_account_id = var.tfstate_account_id
}Or maybe you have a way in atmos to pass this variables to the module directly.
Thanks