move to tf 14; sensitive vars

swhite24 · Mar 3, 2021 · 5ddec47 · 5ddec47
1 parent af1fbb3
commit 5ddec47
Show file tree

Hide file tree

Showing 4 changed files with 81 additions and 18 deletions.
diff --git a/terraform/.terraform.lock.hcl b/terraform/.terraform.lock.hcl
diff --git a/terraform/main.tf b/terraform/main.tf
@@ -34,7 +34,13 @@ resource aws_lambda_function cbpro_buy {
 
   environment {
     variables = {
-      foo = "bar"
+      CBPRO_BUY_KEY         = var.cbpro_key
+      CBPRO_BUY_PASSPHRASE  = var.cbpro_passphrase
+      CBPRO_BUY_SECRET      = var.cbpro_secret
+      CBPRO_BUY_CURRENCY    = var.currency
+      CBPRO_BUY_PRODUCT     = var.product
+      CBPRO_BUY_AMOUNT      = var.amount
+      CBPRO_BUY_AUTODEPOSIT = var.auto_deposit
     }
   }
 }
@@ -67,19 +73,19 @@ resource aws_iam_role_policy_attachment lambda_logs {
   policy_arn = aws_iam_policy.lambda_logging.arn
 }
 
-# resource aws_cloudwatch_event_rule event_rule {
-#   schedule_expression = var.lambda_schedule_expression
-# }
+resource aws_cloudwatch_event_rule event_rule {
+  schedule_expression = var.lambda_schedule_expression
+}
 
-# resource aws_cloudwatch_event_target event_target {
-#   rule = aws_cloudwatch_event_rule.event_rule.name
-#   arn  = aws_lambda_function.cbpro_buy.arn
-# }
+resource aws_cloudwatch_event_target event_target {
+  rule = aws_cloudwatch_event_rule.event_rule.name
+  arn  = aws_lambda_function.cbpro_buy.arn
+}
 
-# resource aws_lambda_permission cloudwatch_permission {
-#   statement_id  = "AllowExecutionFromCloudWatch"
-#   action        = "lambda:InvokeFunction"
-#   function_name = var.function_name
-#   principal     = "events.amazonaws.com"
-#   source_arn    = aws_cloudwatch_event_rule.event_rule.arn
-# }
+resource aws_lambda_permission cloudwatch_permission {
+  statement_id  = "AllowExecutionFromCloudWatch"
+  action        = "lambda:InvokeFunction"
+  function_name = var.function_name
+  principal     = "events.amazonaws.com"
+  source_arn    = aws_cloudwatch_event_rule.event_rule.arn
+}
diff --git a/terraform/var.tf b/terraform/var.tf
@@ -1,4 +1,21 @@
 variable function_name { default = "cbpro-buy-weekly" }
-variable lambda_schedule_expression { default = "cron(0 5 ? * 5 *)"}
+variable lambda_schedule_expression { default = "cron(0 5 ? * 5 *)" }
 variable executable { default = "cbpro-buy-lambda" }
 variable archive { default = "cbpro-buy-lambda.zip" }
+# set to 1 or null
+variable auto_deposit { default = 1 }
+variable amount { default = 10 }
+variable currency { default = "USD" }
+variable product { default = "BTC" }
+variable cbpro_key {
+  type      = string
+  sensitive = true
+}
+variable cbpro_passphrase {
+  type      = string
+  sensitive = true
+}
+variable cbpro_secret {
+  type      = string
+  sensitive = true
+}
diff --git a/terraform/versions.tf b/terraform/versions.tf
@@ -5,9 +5,9 @@ terraform {
       version = "~> 3.30.0"
     }
     archive = {
-      souce   = "hashicorp/archive"
+      source  = "hashicorp/archive"
       version = "~> 2.1.0"
     }
   }
-  required_version = "~> 0.13.6"
+  required_version = "~> 0.14.7"
 }