Начало Каталог Помощ
Регистрация Вход
AFS
/
xdr-terraform-live
2
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
Преглед на файлове

Fixes WAF logs. Adds a customer searchhead to modelclient

Kinesis Firehose must exist in any account publishing WAF logs
Fred Damstra [afs macbook] преди 3 години
родител
54d541ff06
ревизия
d4fd23267d
променени са 11 файла, в които са добавени 703 реда и са изтрити 0 реда
Разделен изглед Покажи статистика за разликите
  1. 145 0
      prod/aws-us-gov/mdr-prod-c2/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
  2. 40 0
      prod/aws-us-gov/mdr-prod-c2/130-kinesis_firehose_waf_logs/terragrunt.hcl
  3. 1 0
      prod/env.hcl
  4. 145 0
      test/aws-us-gov/mdr-test-c2/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
  5. 40 0
      test/aws-us-gov/mdr-test-c2/130-kinesis_firehose_waf_logs/terragrunt.hcl
  6. 145 0
      test/aws-us-gov/mdr-test-modelclient/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
  7. 40 0
      test/aws-us-gov/mdr-test-modelclient/130-kinesis_firehose_waf_logs/terragrunt.hcl
  8. 88 0
      test/aws-us-gov/mdr-test-modelclient/190-splunk-customer-searchhead/.terraform.lock.hcl
  9. 46 0
      test/aws-us-gov/mdr-test-modelclient/190-splunk-customer-searchhead/terragrunt.hcl
  10. 12 0
      test/aws-us-gov/mdr-test-modelclient/account.hcl
  11. 1 0
      test/env.hcl

+ 145 - 0
prod/aws-us-gov/mdr-prod-c2/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
Целия файл 

@@ -0,0 +1,145 @@
 
+# This file is maintained automatically by "terraform init".
 
+# Manual edits may be lost in future updates.
 
+
 
+provider "registry.terraform.io/hashicorp/archive" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:EkUZ8/5ZEFtUErBcThuMyAXMJ4SNyDebp+rCD8Oakso=",
 
+    "h1:K4Q9hmTnCrGbXZBq2hf6CbekHx5oXFwPBmWOwAPNqtM=",
 
+    "h1:Rjd4bHMA69V+16tiriAUTW8vvqoljzNLmEaRBCgzpUs=",
 
+    "h1:f3WXKM/FBu5EMY6j2BGt982hzVMNicrxTyEAz5EsrOU=",
 
+    "zh:033279ecbf60f565303222e9a6d26b50fdebe43aa1c6e8f565f09bb64d67c3fd",
 
+    "zh:0af998e42eb421c92e87202df5bfee436b3cfe553214394f08d786c72a9e3f70",
 
+    "zh:1183b661c692f38409a61eefb5d412167c246fcd9e49d4d61d6d910012d206ba",
 
+    "zh:5febb66f4a8207117f71dcd460fb9c81d3afb7b600b5e598cf517cf6e27cf4b2",
 
+    "zh:66135ce46d29d0ccf0e3b6a119423754ca334dbf4266bc989cce5b0b667b5fde",
 
+    "zh:6b9dc1a4f0a680bb650a7191784927f99675a8c8dd3c155ba821185f630db604",
 
+    "zh:91e249482c016ecf6bf8b83849964005cd2d0b4396688419cd1752809b46b23e",
 
+    "zh:a6a2e5f2f010c511e66174cb84ea18899e8bcfc1354c4b9fed972fdb131ffffc",
 
+    "zh:bb1f6abc76552a883732caff897ff7b07a91977a9b4bb97915f6aac54116bb65",
 
+    "zh:f05a9a63607f85719fde705f58d82ee16fa67f9158a5c3424c0216507631eddf",
 
+    "zh:fc603a05a06814387ffa4a054d1baee8ea6b5ab32c53cb73e90a5bf9a2616777",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/aws" {
 
+  version     = "3.37.0"
 
+  constraints = "3.37.0"
 
+  hashes = [
 
+    "h1:GeRKgHncFkh8vd+Rlq6G/5D7wgfd9LXLYrfNvLiMy48=",
 
+    "h1:RvLGIfRZfbzY58wUja9B6CvGdgVVINy7zLVBdLqIelA=",
 
+    "h1:Tf6Os+utUxE8rEr/emCXLFEDdCb0Y6rsN4Ee84+aDCQ=",
 
+    "h1:mxnOC4CXzhG+/JiAs6u2QTn6ecDBoiZBqxaXwqp2TB0=",
 
+    "zh:064c9b21bcd69be7a8631ccb3eccb8690c6a9955051145920803ef6ce6fc06bf",
 
+    "zh:277dd05750187a41282cf6e066e882eac0dd0056e3211d125f94bf62c19c4b8b",
 
+    "zh:47050211f72dcbf3d99c82147abd2eefbb7238efb94d5188979f60de66c8a3df",
 
+    "zh:4a4e0d070399a050847545721dae925c192a2d6354802fdfbea73769077acca5",
 
+    "zh:4cbc46f79239c85d69389f9e91ca9a9ebf6a8a937cfada026c5a037fd09130fb",
 
+    "zh:6548dcb1ac4a388ed46034a5317fa74b3b0b0f68eec03393f2d4d09342683f95",
 
+    "zh:75b4a82596aa525d95b0b2847fe648368c6e2b054059c4dc4dcdee01d374b592",
 
+    "zh:75cf5cc674b61c82300667a82650f56722618b119ab0526b47b5ecbb4bbf49d0",
 
+    "zh:93c896682359039960c38eb5a4b29d1cc06422f228db0572b90330427e2a21ec",
 
+    "zh:c7256663aedbc9de121316b6d0623551386a476fc12b8eb77e88532ce15de354",
 
+    "zh:e995c32f49c23b5938200386e08b2a3fd69cf5102b5299366c0608bbeac68429",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/external" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:LTl5CGW8wiIEe16AC4MtXN/95xWWNDbap70zJsBTk0w=",
 
+    "zh:0d83ffb72fbd08986378204a7373d8c43b127049096eaf2765bfdd6b00ad9853",
 
+    "zh:7577d6edc67b1e8c2cf62fe6501192df1231d74125d90e51d570d586d95269c5",
 
+    "zh:9c669ded5d5affa4b2544952c4b6588dfed55260147d24ced02dca3a2829f328",
 
+    "zh:a404d46f2831f90633947ab5d57e19dbfe35b3704104ba6ec80bcf50b058acfd",
 
+    "zh:ae1caea1c936d459ceadf287bb5c5bd67b5e2a7819df6f5c4114b7305df7f822",
 
+    "zh:afb4f805477694a4b9dde86b268d2c0821711c8aab1c6088f5f992228c4c06fb",
 
+    "zh:b993b4a1de8a462643e78f4786789e44ce5064b332fee1cb0d6250ed085561b8",
 
+    "zh:c84b2c13fa3ea2c0aa7291243006d560ce480a5591294b9001ce3742fc9c5791",
 
+    "zh:c8966f69b7eccccb771704fd5335923692eccc9e0e90cb95d14538fe2e92a3b8",
 
+    "zh:d5fe68850d449b811e633a300b114d0617df6d450305e8251643b4d143dc855b",
 
+    "zh:ddebfd1e674ba336df09b1f27bbaa0e036c25b7a7087dc8081443f6e5954028b",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/null" {
 
+  version = "3.1.0"
 
+  hashes = [
 
+    "h1:xhbHC6in3nQryvTQBWKxebi3inG5OCgHgc4fRxL0ymc=",
 
+    "zh:02a1675fd8de126a00460942aaae242e65ca3380b5bb192e8773ef3da9073fd2",
 
+    "zh:53e30545ff8926a8e30ad30648991ca8b93b6fa496272cd23b26763c8ee84515",
 
+    "zh:5f9200bf708913621d0f6514179d89700e9aa3097c77dac730e8ba6e5901d521",
 
+    "zh:9ebf4d9704faba06b3ec7242c773c0fbfe12d62db7d00356d4f55385fc69bfb2",
 
+    "zh:a6576c81adc70326e4e1c999c04ad9ca37113a6e925aefab4765e5a5198efa7e",
 
+    "zh:a8a42d13346347aff6c63a37cda9b2c6aa5cc384a55b2fe6d6adfa390e609c53",
 
+    "zh:c797744d08a5307d50210e0454f91ca4d1c7621c68740441cf4579390452321d",
 
+    "zh:cecb6a304046df34c11229f20a80b24b1603960b794d68361a67c5efe58e62b8",
 
+    "zh:e1371aa1e502000d9974cfaff5be4cfa02f47b17400005a16f14d2ef30dc2a70",
 
+    "zh:fc39cc1fe71234a0b0369d5c5c7f876c71b956d23d7d6f518289737a001ba69b",
 
+    "zh:fea4227271ebf7d9e2b61b89ce2328c7262acd9fd190e1fd6d15a591abfa848e",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/template" {
 
+  version     = "2.2.0"
 
+  constraints = "2.2.0"
 
+  hashes = [
 
+    "h1:0wlehNaxBX7GJQnPfQwTNvvAf38Jm0Nv7ssKGMaG6Og=",
 
+    "h1:12Bac8B6Aq2+18xe8iqp5iYytav2Bw+jG43z/VaK5zI=",
 
+    "h1:94qn780bi1qjrbC3uQtjJh3Wkfwd5+tTtJHOb7KTg9w=",
 
+    "h1:LN84cu+BZpVRvYlCzrbPfCRDaIelSyEx/W9Iwwgbnn4=",
 
+    "zh:01702196f0a0492ec07917db7aaa595843d8f171dc195f4c988d2ffca2a06386",
 
+    "zh:09aae3da826ba3d7df69efeb25d146a1de0d03e951d35019a0f80e4f58c89b53",
 
+    "zh:09ba83c0625b6fe0a954da6fbd0c355ac0b7f07f86c91a2a97849140fea49603",
 
+    "zh:0e3a6c8e16f17f19010accd0844187d524580d9fdb0731f675ffcf4afba03d16",
 
+    "zh:45f2c594b6f2f34ea663704cc72048b212fe7d16fb4cfd959365fa997228a776",
 
+    "zh:77ea3e5a0446784d77114b5e851c970a3dde1e08fa6de38210b8385d7605d451",
 
+    "zh:8a154388f3708e3df5a69122a23bdfaf760a523788a5081976b3d5616f7d30ae",
 
+    "zh:992843002f2db5a11e626b3fc23dc0c87ad3729b3b3cff08e32ffb3df97edbde",
 
+    "zh:ad906f4cebd3ec5e43d5cd6dc8f4c5c9cc3b33d2243c89c5fc18f97f7277b51d",
 
+    "zh:c979425ddb256511137ecd093e23283234da0154b7fa8b21c2687182d9aea8b2",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/vault" {
 
+  version     = "2.19.1"
 
+  constraints = "2.19.1"
 
+  hashes = [
 
+    "h1:04SjcwVTpGqFOAZezd9vmo/ceQGovZL/Cb9kVPjQscQ=",
 
+    "h1:3LNNXigzNkIAALc1v8uRfKmjzlUYyfQH+r/N5plUUeA=",
 
+    "h1:Sqdnqh2CHtEEVdTQom0+qQsgn+gjnVZXk6Xb9iOPQi4=",
 
+    "h1:yz5QWTvycJvjR3Z5EaCLF6UC8hugPAz2eIy9NzymPoI=",
 
+    "zh:0c6ca9d49bc116788015bbf83f7e8e405e4e63bfd9dd198f29d501632bc7d79f",
 
+    "zh:1f13cbe8d6b98a9e0392c72320cd86d5253a09f3c45fe9f4baa2b71660621d1e",
 
+    "zh:365d07bec517cb17523526c3a6f1bd23dbedb7fe8868d28976998c5eff3b9932",
 
+    "zh:3ac807ce39cd11d5a573377b868bc547f1f24ac2fb7bf3d7e1ec5a62ead7c31f",
 
+    "zh:5eb21cf4628353fcbd44231b92d1e027340af98b2ba02aaa01d91b07989caa8c",
 
+    "zh:66bed701cd0372b864ba656c9a01deb15e6cd7ac4390a3933e034a01f7bbe703",
 
+    "zh:8dd523de854b59f7e837102064f23fcf33ee69d4d46feeb5a67796b7ba03d003",
 
+    "zh:a514911915ab7d7b5fda18a7ca1404ca0496a54088a6ef52e0b92e4e0d7ff85e",
 
+    "zh:b4020c332c2b5b992f56d0e3e7b4940f7dab63f2af5558d913e79834b90b4d80",
 
+    "zh:bdb1c77d22e7accedf4b501f139c306c46dcb58ff693b9a6dcaef356c6749ee1",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/jtopjian/sensu" {
 
+  version     = "0.10.5"
 
+  constraints = "0.10.5"
 
+  hashes = [
 
+    "h1:/i+iYOhp7+nC7rZHJcQ4TWf4POHGhbwShPuvyko+/0s=",
 
+    "h1:DwoEsKZDLh315Q99LFdnzgqJR0kNHTBeUC9rZRJP2iU=",
 
+    "h1:MGRbVNP4L1FNXzAKUwBTUu9loNUGmRJQSndDrubRm7o=",
 
+    "h1:ZMsKGpRtwCSpkxZrpB4jFMxJ+RQCMs9Xed+RLPzMTm4=",
 
+    "zh:3225f4916085c97dd49deab54a8a590f6d32f9e7b07c4781e1da7a639bacc412",
 
+    "zh:45dc4d6edd2943f77967bd50065070e3eece274b9a32a5de4541b80609d53aaf",
 
+    "zh:4a35d980af50e4e86935fe3e1a55baf917f46921bea288abc53f438dc334ada2",
 
+    "zh:6b1bee30e0d0c2713ae684920c3a9ae0d01bb847e616358e254412b382671d4c",
 
+    "zh:7f0d10555eff2748c03a5642e785be3624e304cc174874c6ab52cb05041efecf",
 
+    "zh:7f70a20b92759afd7f5dd9b4877328b657545377e4e6e1f67c9b55e883d08b81",
 
+    "zh:844c3b405620779d06871d9ca9f84fa3745bbae668af8bd790504fd4649fbb7a",
 
+    "zh:95aba67c1ccdf6dd3f75c257f1a91e936fbd0ddb47b21fc85e90b7204abe7c05",
 
+    "zh:97f20679d06fcf74c6dbb30930541c8e12e07e8210213b4437d6b79034b8b60d",
 
+    "zh:c77dd3019a11eb7e047a09e38d8347de1bd1fecc7893c2f52512ede811ab7103",
 
+    "zh:c86d3aa646335ac7d5bb85475e7be115b62adc8d06ab4fb962c7f2874a1b5108",
 
+  ]
 
+}

+ 40 - 0
prod/aws-us-gov/mdr-prod-c2/130-kinesis_firehose_waf_logs/terragrunt.hcl
Целия файл 

@@ -0,0 +1,40 @@
 
+locals {
 
+  # If you want to use any of the variables in _this_ file, you have to load them here.
 
+  # However, they will all be available as inputs to the module loaded in terraform.source
 
+  # below.
 
+
 
+  environment_vars = read_terragrunt_config(find_in_parent_folders("env.hcl"))
 
+  partition_vars = read_terragrunt_config(find_in_parent_folders("partition.hcl"))
 
+  region_vars = read_terragrunt_config(find_in_parent_folders("region.hcl"))
 
+  account_vars = read_terragrunt_config(find_in_parent_folders("account.hcl"))
 
+  global_vars = read_terragrunt_config(find_in_parent_folders("globals.hcl"))
 
+}
 
+
 
+# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
 
+# working directory, into a temporary folder, and execute your Terraform commands in that folder.
 
+terraform {
 
+  # Double slash is intentional and required to show root of modules
 
+  source = "git@github.xdr.accenturefederalcyber.com:mdr-engineering/xdr-terraform-modules.git//base/kinesis_firehose_waf_logs?ref=v2.1.6"
 
+}
 
+
 
+dependency "c2_account_standards" {
 
+  config_path = local.account_vars.locals.c2_account_standards_path
 
+}
 
+
 
+# Include all settings from the root terragrunt.hcl file
 
+include {
 
+  path = find_in_parent_folders()
 
+}
 
+
 
+# These are the variables we have to pass in to use the module specified in the terragrunt source above
 
+inputs = {
 
+  # All of the inputs from the inherited hcl files are available automatically
 
+  # (via the `inputs` section of the root `terragrunt.hcl`). However, modules
 
+  # will be more flexible if you specify particular input values.
 
+  tags = {
 
+    Terraform = "aws/${basename(get_parent_terragrunt_dir())}/${path_relative_to_include()}/"
 
+  }
 
+  cloudtrail_key_arn = dependency.c2_account_standards.outputs.cloudtrail_logging_bucket.kms_key_id
 
+}
 
+terraform_version_constraint = "= 0.15.1"
 
+terragrunt_version_constraint = ">= 0.29, < 0.30"

+ 1 - 0
prod/env.hcl
Целия файл 

@@ -16,6 +16,7 @@ locals {
 
   hec = "moose-hec.xdr.accenturefederalcyber.com"
 
   hec_pub = "moose-hec.xdr.accenturefederalcyber.com"
 
   hec_pub_ack = "moose-hec-ack.xdr.accenturefederalcyber.com"
 
+  aws_waf_logs_hec_token = "FA38B8DD-1398-46D0-BD79-BA046C6064B0" # HEC token for posting WAF logs to the moose HEC
 
 
   # When there are multiples, put govcloud first, then commercial, and alternate if there are more than 2.
 
   # Put any standalone IPs at the end.

+ 145 - 0
test/aws-us-gov/mdr-test-c2/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
Целия файл 

@@ -0,0 +1,145 @@
 
+# This file is maintained automatically by "terraform init".
 
+# Manual edits may be lost in future updates.
 
+
 
+provider "registry.terraform.io/hashicorp/archive" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:EkUZ8/5ZEFtUErBcThuMyAXMJ4SNyDebp+rCD8Oakso=",
 
+    "h1:K4Q9hmTnCrGbXZBq2hf6CbekHx5oXFwPBmWOwAPNqtM=",
 
+    "h1:Rjd4bHMA69V+16tiriAUTW8vvqoljzNLmEaRBCgzpUs=",
 
+    "h1:f3WXKM/FBu5EMY6j2BGt982hzVMNicrxTyEAz5EsrOU=",
 
+    "zh:033279ecbf60f565303222e9a6d26b50fdebe43aa1c6e8f565f09bb64d67c3fd",
 
+    "zh:0af998e42eb421c92e87202df5bfee436b3cfe553214394f08d786c72a9e3f70",
 
+    "zh:1183b661c692f38409a61eefb5d412167c246fcd9e49d4d61d6d910012d206ba",
 
+    "zh:5febb66f4a8207117f71dcd460fb9c81d3afb7b600b5e598cf517cf6e27cf4b2",
 
+    "zh:66135ce46d29d0ccf0e3b6a119423754ca334dbf4266bc989cce5b0b667b5fde",
 
+    "zh:6b9dc1a4f0a680bb650a7191784927f99675a8c8dd3c155ba821185f630db604",
 
+    "zh:91e249482c016ecf6bf8b83849964005cd2d0b4396688419cd1752809b46b23e",
 
+    "zh:a6a2e5f2f010c511e66174cb84ea18899e8bcfc1354c4b9fed972fdb131ffffc",
 
+    "zh:bb1f6abc76552a883732caff897ff7b07a91977a9b4bb97915f6aac54116bb65",
 
+    "zh:f05a9a63607f85719fde705f58d82ee16fa67f9158a5c3424c0216507631eddf",
 
+    "zh:fc603a05a06814387ffa4a054d1baee8ea6b5ab32c53cb73e90a5bf9a2616777",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/aws" {
 
+  version     = "3.37.0"
 
+  constraints = "3.37.0"
 
+  hashes = [
 
+    "h1:GeRKgHncFkh8vd+Rlq6G/5D7wgfd9LXLYrfNvLiMy48=",
 
+    "h1:RvLGIfRZfbzY58wUja9B6CvGdgVVINy7zLVBdLqIelA=",
 
+    "h1:Tf6Os+utUxE8rEr/emCXLFEDdCb0Y6rsN4Ee84+aDCQ=",
 
+    "h1:mxnOC4CXzhG+/JiAs6u2QTn6ecDBoiZBqxaXwqp2TB0=",
 
+    "zh:064c9b21bcd69be7a8631ccb3eccb8690c6a9955051145920803ef6ce6fc06bf",
 
+    "zh:277dd05750187a41282cf6e066e882eac0dd0056e3211d125f94bf62c19c4b8b",
 
+    "zh:47050211f72dcbf3d99c82147abd2eefbb7238efb94d5188979f60de66c8a3df",
 
+    "zh:4a4e0d070399a050847545721dae925c192a2d6354802fdfbea73769077acca5",
 
+    "zh:4cbc46f79239c85d69389f9e91ca9a9ebf6a8a937cfada026c5a037fd09130fb",
 
+    "zh:6548dcb1ac4a388ed46034a5317fa74b3b0b0f68eec03393f2d4d09342683f95",
 
+    "zh:75b4a82596aa525d95b0b2847fe648368c6e2b054059c4dc4dcdee01d374b592",
 
+    "zh:75cf5cc674b61c82300667a82650f56722618b119ab0526b47b5ecbb4bbf49d0",
 
+    "zh:93c896682359039960c38eb5a4b29d1cc06422f228db0572b90330427e2a21ec",
 
+    "zh:c7256663aedbc9de121316b6d0623551386a476fc12b8eb77e88532ce15de354",
 
+    "zh:e995c32f49c23b5938200386e08b2a3fd69cf5102b5299366c0608bbeac68429",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/external" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:LTl5CGW8wiIEe16AC4MtXN/95xWWNDbap70zJsBTk0w=",
 
+    "zh:0d83ffb72fbd08986378204a7373d8c43b127049096eaf2765bfdd6b00ad9853",
 
+    "zh:7577d6edc67b1e8c2cf62fe6501192df1231d74125d90e51d570d586d95269c5",
 
+    "zh:9c669ded5d5affa4b2544952c4b6588dfed55260147d24ced02dca3a2829f328",
 
+    "zh:a404d46f2831f90633947ab5d57e19dbfe35b3704104ba6ec80bcf50b058acfd",
 
+    "zh:ae1caea1c936d459ceadf287bb5c5bd67b5e2a7819df6f5c4114b7305df7f822",
 
+    "zh:afb4f805477694a4b9dde86b268d2c0821711c8aab1c6088f5f992228c4c06fb",
 
+    "zh:b993b4a1de8a462643e78f4786789e44ce5064b332fee1cb0d6250ed085561b8",
 
+    "zh:c84b2c13fa3ea2c0aa7291243006d560ce480a5591294b9001ce3742fc9c5791",
 
+    "zh:c8966f69b7eccccb771704fd5335923692eccc9e0e90cb95d14538fe2e92a3b8",
 
+    "zh:d5fe68850d449b811e633a300b114d0617df6d450305e8251643b4d143dc855b",
 
+    "zh:ddebfd1e674ba336df09b1f27bbaa0e036c25b7a7087dc8081443f6e5954028b",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/null" {
 
+  version = "3.1.0"
 
+  hashes = [
 
+    "h1:xhbHC6in3nQryvTQBWKxebi3inG5OCgHgc4fRxL0ymc=",
 
+    "zh:02a1675fd8de126a00460942aaae242e65ca3380b5bb192e8773ef3da9073fd2",
 
+    "zh:53e30545ff8926a8e30ad30648991ca8b93b6fa496272cd23b26763c8ee84515",
 
+    "zh:5f9200bf708913621d0f6514179d89700e9aa3097c77dac730e8ba6e5901d521",
 
+    "zh:9ebf4d9704faba06b3ec7242c773c0fbfe12d62db7d00356d4f55385fc69bfb2",
 
+    "zh:a6576c81adc70326e4e1c999c04ad9ca37113a6e925aefab4765e5a5198efa7e",
 
+    "zh:a8a42d13346347aff6c63a37cda9b2c6aa5cc384a55b2fe6d6adfa390e609c53",
 
+    "zh:c797744d08a5307d50210e0454f91ca4d1c7621c68740441cf4579390452321d",
 
+    "zh:cecb6a304046df34c11229f20a80b24b1603960b794d68361a67c5efe58e62b8",
 
+    "zh:e1371aa1e502000d9974cfaff5be4cfa02f47b17400005a16f14d2ef30dc2a70",
 
+    "zh:fc39cc1fe71234a0b0369d5c5c7f876c71b956d23d7d6f518289737a001ba69b",
 
+    "zh:fea4227271ebf7d9e2b61b89ce2328c7262acd9fd190e1fd6d15a591abfa848e",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/template" {
 
+  version     = "2.2.0"
 
+  constraints = "2.2.0"
 
+  hashes = [
 
+    "h1:0wlehNaxBX7GJQnPfQwTNvvAf38Jm0Nv7ssKGMaG6Og=",
 
+    "h1:12Bac8B6Aq2+18xe8iqp5iYytav2Bw+jG43z/VaK5zI=",
 
+    "h1:94qn780bi1qjrbC3uQtjJh3Wkfwd5+tTtJHOb7KTg9w=",
 
+    "h1:LN84cu+BZpVRvYlCzrbPfCRDaIelSyEx/W9Iwwgbnn4=",
 
+    "zh:01702196f0a0492ec07917db7aaa595843d8f171dc195f4c988d2ffca2a06386",
 
+    "zh:09aae3da826ba3d7df69efeb25d146a1de0d03e951d35019a0f80e4f58c89b53",
 
+    "zh:09ba83c0625b6fe0a954da6fbd0c355ac0b7f07f86c91a2a97849140fea49603",
 
+    "zh:0e3a6c8e16f17f19010accd0844187d524580d9fdb0731f675ffcf4afba03d16",
 
+    "zh:45f2c594b6f2f34ea663704cc72048b212fe7d16fb4cfd959365fa997228a776",
 
+    "zh:77ea3e5a0446784d77114b5e851c970a3dde1e08fa6de38210b8385d7605d451",
 
+    "zh:8a154388f3708e3df5a69122a23bdfaf760a523788a5081976b3d5616f7d30ae",
 
+    "zh:992843002f2db5a11e626b3fc23dc0c87ad3729b3b3cff08e32ffb3df97edbde",
 
+    "zh:ad906f4cebd3ec5e43d5cd6dc8f4c5c9cc3b33d2243c89c5fc18f97f7277b51d",
 
+    "zh:c979425ddb256511137ecd093e23283234da0154b7fa8b21c2687182d9aea8b2",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/vault" {
 
+  version     = "2.19.1"
 
+  constraints = "2.19.1"
 
+  hashes = [
 
+    "h1:04SjcwVTpGqFOAZezd9vmo/ceQGovZL/Cb9kVPjQscQ=",
 
+    "h1:3LNNXigzNkIAALc1v8uRfKmjzlUYyfQH+r/N5plUUeA=",
 
+    "h1:Sqdnqh2CHtEEVdTQom0+qQsgn+gjnVZXk6Xb9iOPQi4=",
 
+    "h1:yz5QWTvycJvjR3Z5EaCLF6UC8hugPAz2eIy9NzymPoI=",
 
+    "zh:0c6ca9d49bc116788015bbf83f7e8e405e4e63bfd9dd198f29d501632bc7d79f",
 
+    "zh:1f13cbe8d6b98a9e0392c72320cd86d5253a09f3c45fe9f4baa2b71660621d1e",
 
+    "zh:365d07bec517cb17523526c3a6f1bd23dbedb7fe8868d28976998c5eff3b9932",
 
+    "zh:3ac807ce39cd11d5a573377b868bc547f1f24ac2fb7bf3d7e1ec5a62ead7c31f",
 
+    "zh:5eb21cf4628353fcbd44231b92d1e027340af98b2ba02aaa01d91b07989caa8c",
 
+    "zh:66bed701cd0372b864ba656c9a01deb15e6cd7ac4390a3933e034a01f7bbe703",
 
+    "zh:8dd523de854b59f7e837102064f23fcf33ee69d4d46feeb5a67796b7ba03d003",
 
+    "zh:a514911915ab7d7b5fda18a7ca1404ca0496a54088a6ef52e0b92e4e0d7ff85e",
 
+    "zh:b4020c332c2b5b992f56d0e3e7b4940f7dab63f2af5558d913e79834b90b4d80",
 
+    "zh:bdb1c77d22e7accedf4b501f139c306c46dcb58ff693b9a6dcaef356c6749ee1",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/jtopjian/sensu" {
 
+  version     = "0.10.5"
 
+  constraints = "0.10.5"
 
+  hashes = [
 
+    "h1:/i+iYOhp7+nC7rZHJcQ4TWf4POHGhbwShPuvyko+/0s=",
 
+    "h1:DwoEsKZDLh315Q99LFdnzgqJR0kNHTBeUC9rZRJP2iU=",
 
+    "h1:MGRbVNP4L1FNXzAKUwBTUu9loNUGmRJQSndDrubRm7o=",
 
+    "h1:ZMsKGpRtwCSpkxZrpB4jFMxJ+RQCMs9Xed+RLPzMTm4=",
 
+    "zh:3225f4916085c97dd49deab54a8a590f6d32f9e7b07c4781e1da7a639bacc412",
 
+    "zh:45dc4d6edd2943f77967bd50065070e3eece274b9a32a5de4541b80609d53aaf",
 
+    "zh:4a35d980af50e4e86935fe3e1a55baf917f46921bea288abc53f438dc334ada2",
 
+    "zh:6b1bee30e0d0c2713ae684920c3a9ae0d01bb847e616358e254412b382671d4c",
 
+    "zh:7f0d10555eff2748c03a5642e785be3624e304cc174874c6ab52cb05041efecf",
 
+    "zh:7f70a20b92759afd7f5dd9b4877328b657545377e4e6e1f67c9b55e883d08b81",
 
+    "zh:844c3b405620779d06871d9ca9f84fa3745bbae668af8bd790504fd4649fbb7a",
 
+    "zh:95aba67c1ccdf6dd3f75c257f1a91e936fbd0ddb47b21fc85e90b7204abe7c05",
 
+    "zh:97f20679d06fcf74c6dbb30930541c8e12e07e8210213b4437d6b79034b8b60d",
 
+    "zh:c77dd3019a11eb7e047a09e38d8347de1bd1fecc7893c2f52512ede811ab7103",
 
+    "zh:c86d3aa646335ac7d5bb85475e7be115b62adc8d06ab4fb962c7f2874a1b5108",
 
+  ]
 
+}

+ 40 - 0
test/aws-us-gov/mdr-test-c2/130-kinesis_firehose_waf_logs/terragrunt.hcl
Целия файл 

@@ -0,0 +1,40 @@
 
+locals {
 
+  # If you want to use any of the variables in _this_ file, you have to load them here.
 
+  # However, they will all be available as inputs to the module loaded in terraform.source
 
+  # below.
 
+
 
+  environment_vars = read_terragrunt_config(find_in_parent_folders("env.hcl"))
 
+  partition_vars = read_terragrunt_config(find_in_parent_folders("partition.hcl"))
 
+  region_vars = read_terragrunt_config(find_in_parent_folders("region.hcl"))
 
+  account_vars = read_terragrunt_config(find_in_parent_folders("account.hcl"))
 
+  global_vars = read_terragrunt_config(find_in_parent_folders("globals.hcl"))
 
+}
 
+
 
+# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
 
+# working directory, into a temporary folder, and execute your Terraform commands in that folder.
 
+terraform {
 
+  # Double slash is intentional and required to show root of modules
 
+  source = "git@github.xdr.accenturefederalcyber.com:mdr-engineering/xdr-terraform-modules.git//base/kinesis_firehose_waf_logs?ref=v2.1.6"
 
+}
 
+
 
+dependency "c2_account_standards" {
 
+  config_path = local.account_vars.locals.c2_account_standards_path
 
+}
 
+
 
+# Include all settings from the root terragrunt.hcl file
 
+include {
 
+  path = find_in_parent_folders()
 
+}
 
+
 
+# These are the variables we have to pass in to use the module specified in the terragrunt source above
 
+inputs = {
 
+  # All of the inputs from the inherited hcl files are available automatically
 
+  # (via the `inputs` section of the root `terragrunt.hcl`). However, modules
 
+  # will be more flexible if you specify particular input values.
 
+  tags = {
 
+    Terraform = "aws/${basename(get_parent_terragrunt_dir())}/${path_relative_to_include()}/"
 
+  }
 
+  cloudtrail_key_arn = dependency.c2_account_standards.outputs.cloudtrail_logging_bucket.kms_key_id
 
+}
 
+terraform_version_constraint = "= 0.15.1"
 
+terragrunt_version_constraint = ">= 0.29, < 0.30"

+ 145 - 0
test/aws-us-gov/mdr-test-modelclient/130-kinesis_firehose_waf_logs/.terraform.lock.hcl
Целия файл 

@@ -0,0 +1,145 @@
 
+# This file is maintained automatically by "terraform init".
 
+# Manual edits may be lost in future updates.
 
+
 
+provider "registry.terraform.io/hashicorp/archive" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:EkUZ8/5ZEFtUErBcThuMyAXMJ4SNyDebp+rCD8Oakso=",
 
+    "h1:K4Q9hmTnCrGbXZBq2hf6CbekHx5oXFwPBmWOwAPNqtM=",
 
+    "h1:Rjd4bHMA69V+16tiriAUTW8vvqoljzNLmEaRBCgzpUs=",
 
+    "h1:f3WXKM/FBu5EMY6j2BGt982hzVMNicrxTyEAz5EsrOU=",
 
+    "zh:033279ecbf60f565303222e9a6d26b50fdebe43aa1c6e8f565f09bb64d67c3fd",
 
+    "zh:0af998e42eb421c92e87202df5bfee436b3cfe553214394f08d786c72a9e3f70",
 
+    "zh:1183b661c692f38409a61eefb5d412167c246fcd9e49d4d61d6d910012d206ba",
 
+    "zh:5febb66f4a8207117f71dcd460fb9c81d3afb7b600b5e598cf517cf6e27cf4b2",
 
+    "zh:66135ce46d29d0ccf0e3b6a119423754ca334dbf4266bc989cce5b0b667b5fde",
 
+    "zh:6b9dc1a4f0a680bb650a7191784927f99675a8c8dd3c155ba821185f630db604",
 
+    "zh:91e249482c016ecf6bf8b83849964005cd2d0b4396688419cd1752809b46b23e",
 
+    "zh:a6a2e5f2f010c511e66174cb84ea18899e8bcfc1354c4b9fed972fdb131ffffc",
 
+    "zh:bb1f6abc76552a883732caff897ff7b07a91977a9b4bb97915f6aac54116bb65",
 
+    "zh:f05a9a63607f85719fde705f58d82ee16fa67f9158a5c3424c0216507631eddf",
 
+    "zh:fc603a05a06814387ffa4a054d1baee8ea6b5ab32c53cb73e90a5bf9a2616777",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/aws" {
 
+  version     = "3.37.0"
 
+  constraints = "3.37.0"
 
+  hashes = [
 
+    "h1:GeRKgHncFkh8vd+Rlq6G/5D7wgfd9LXLYrfNvLiMy48=",
 
+    "h1:RvLGIfRZfbzY58wUja9B6CvGdgVVINy7zLVBdLqIelA=",
 
+    "h1:Tf6Os+utUxE8rEr/emCXLFEDdCb0Y6rsN4Ee84+aDCQ=",
 
+    "h1:mxnOC4CXzhG+/JiAs6u2QTn6ecDBoiZBqxaXwqp2TB0=",
 
+    "zh:064c9b21bcd69be7a8631ccb3eccb8690c6a9955051145920803ef6ce6fc06bf",
 
+    "zh:277dd05750187a41282cf6e066e882eac0dd0056e3211d125f94bf62c19c4b8b",
 
+    "zh:47050211f72dcbf3d99c82147abd2eefbb7238efb94d5188979f60de66c8a3df",
 
+    "zh:4a4e0d070399a050847545721dae925c192a2d6354802fdfbea73769077acca5",
 
+    "zh:4cbc46f79239c85d69389f9e91ca9a9ebf6a8a937cfada026c5a037fd09130fb",
 
+    "zh:6548dcb1ac4a388ed46034a5317fa74b3b0b0f68eec03393f2d4d09342683f95",
 
+    "zh:75b4a82596aa525d95b0b2847fe648368c6e2b054059c4dc4dcdee01d374b592",
 
+    "zh:75cf5cc674b61c82300667a82650f56722618b119ab0526b47b5ecbb4bbf49d0",
 
+    "zh:93c896682359039960c38eb5a4b29d1cc06422f228db0572b90330427e2a21ec",
 
+    "zh:c7256663aedbc9de121316b6d0623551386a476fc12b8eb77e88532ce15de354",
 
+    "zh:e995c32f49c23b5938200386e08b2a3fd69cf5102b5299366c0608bbeac68429",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/external" {
 
+  version = "2.1.0"
 
+  hashes = [
 
+    "h1:LTl5CGW8wiIEe16AC4MtXN/95xWWNDbap70zJsBTk0w=",
 
+    "zh:0d83ffb72fbd08986378204a7373d8c43b127049096eaf2765bfdd6b00ad9853",
 
+    "zh:7577d6edc67b1e8c2cf62fe6501192df1231d74125d90e51d570d586d95269c5",
 
+    "zh:9c669ded5d5affa4b2544952c4b6588dfed55260147d24ced02dca3a2829f328",
 
+    "zh:a404d46f2831f90633947ab5d57e19dbfe35b3704104ba6ec80bcf50b058acfd",
 
+    "zh:ae1caea1c936d459ceadf287bb5c5bd67b5e2a7819df6f5c4114b7305df7f822",
 
+    "zh:afb4f805477694a4b9dde86b268d2c0821711c8aab1c6088f5f992228c4c06fb",
 
+    "zh:b993b4a1de8a462643e78f4786789e44ce5064b332fee1cb0d6250ed085561b8",
 
+    "zh:c84b2c13fa3ea2c0aa7291243006d560ce480a5591294b9001ce3742fc9c5791",
 
+    "zh:c8966f69b7eccccb771704fd5335923692eccc9e0e90cb95d14538fe2e92a3b8",
 
+    "zh:d5fe68850d449b811e633a300b114d0617df6d450305e8251643b4d143dc855b",
 
+    "zh:ddebfd1e674ba336df09b1f27bbaa0e036c25b7a7087dc8081443f6e5954028b",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/null" {
 
+  version = "3.1.0"
 
+  hashes = [
 
+    "h1:xhbHC6in3nQryvTQBWKxebi3inG5OCgHgc4fRxL0ymc=",
 
+    "zh:02a1675fd8de126a00460942aaae242e65ca3380b5bb192e8773ef3da9073fd2",
 
+    "zh:53e30545ff8926a8e30ad30648991ca8b93b6fa496272cd23b26763c8ee84515",
 
+    "zh:5f9200bf708913621d0f6514179d89700e9aa3097c77dac730e8ba6e5901d521",
 
+    "zh:9ebf4d9704faba06b3ec7242c773c0fbfe12d62db7d00356d4f55385fc69bfb2",
 
+    "zh:a6576c81adc70326e4e1c999c04ad9ca37113a6e925aefab4765e5a5198efa7e",
 
+    "zh:a8a42d13346347aff6c63a37cda9b2c6aa5cc384a55b2fe6d6adfa390e609c53",
 
+    "zh:c797744d08a5307d50210e0454f91ca4d1c7621c68740441cf4579390452321d",
 
+    "zh:cecb6a304046df34c11229f20a80b24b1603960b794d68361a67c5efe58e62b8",
 
+    "zh:e1371aa1e502000d9974cfaff5be4cfa02f47b17400005a16f14d2ef30dc2a70",
 
+    "zh:fc39cc1fe71234a0b0369d5c5c7f876c71b956d23d7d6f518289737a001ba69b",
 
+    "zh:fea4227271ebf7d9e2b61b89ce2328c7262acd9fd190e1fd6d15a591abfa848e",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/template" {
 
+  version     = "2.2.0"
 
+  constraints = "2.2.0"
 
+  hashes = [
 
+    "h1:0wlehNaxBX7GJQnPfQwTNvvAf38Jm0Nv7ssKGMaG6Og=",
 
+    "h1:12Bac8B6Aq2+18xe8iqp5iYytav2Bw+jG43z/VaK5zI=",
 
+    "h1:94qn780bi1qjrbC3uQtjJh3Wkfwd5+tTtJHOb7KTg9w=",
 
+    "h1:LN84cu+BZpVRvYlCzrbPfCRDaIelSyEx/W9Iwwgbnn4=",
 
+    "zh:01702196f0a0492ec07917db7aaa595843d8f171dc195f4c988d2ffca2a06386",
 
+    "zh:09aae3da826ba3d7df69efeb25d146a1de0d03e951d35019a0f80e4f58c89b53",
 
+    "zh:09ba83c0625b6fe0a954da6fbd0c355ac0b7f07f86c91a2a97849140fea49603",
 
+    "zh:0e3a6c8e16f17f19010accd0844187d524580d9fdb0731f675ffcf4afba03d16",
 
+    "zh:45f2c594b6f2f34ea663704cc72048b212fe7d16fb4cfd959365fa997228a776",
 
+    "zh:77ea3e5a0446784d77114b5e851c970a3dde1e08fa6de38210b8385d7605d451",
 
+    "zh:8a154388f3708e3df5a69122a23bdfaf760a523788a5081976b3d5616f7d30ae",
 
+    "zh:992843002f2db5a11e626b3fc23dc0c87ad3729b3b3cff08e32ffb3df97edbde",
 
+    "zh:ad906f4cebd3ec5e43d5cd6dc8f4c5c9cc3b33d2243c89c5fc18f97f7277b51d",
 
+    "zh:c979425ddb256511137ecd093e23283234da0154b7fa8b21c2687182d9aea8b2",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/vault" {
 
+  version     = "2.19.1"
 
+  constraints = "2.19.1"
 
+  hashes = [
 
+    "h1:04SjcwVTpGqFOAZezd9vmo/ceQGovZL/Cb9kVPjQscQ=",
 
+    "h1:3LNNXigzNkIAALc1v8uRfKmjzlUYyfQH+r/N5plUUeA=",
 
+    "h1:Sqdnqh2CHtEEVdTQom0+qQsgn+gjnVZXk6Xb9iOPQi4=",
 
+    "h1:yz5QWTvycJvjR3Z5EaCLF6UC8hugPAz2eIy9NzymPoI=",
 
+    "zh:0c6ca9d49bc116788015bbf83f7e8e405e4e63bfd9dd198f29d501632bc7d79f",
 
+    "zh:1f13cbe8d6b98a9e0392c72320cd86d5253a09f3c45fe9f4baa2b71660621d1e",
 
+    "zh:365d07bec517cb17523526c3a6f1bd23dbedb7fe8868d28976998c5eff3b9932",
 
+    "zh:3ac807ce39cd11d5a573377b868bc547f1f24ac2fb7bf3d7e1ec5a62ead7c31f",
 
+    "zh:5eb21cf4628353fcbd44231b92d1e027340af98b2ba02aaa01d91b07989caa8c",
 
+    "zh:66bed701cd0372b864ba656c9a01deb15e6cd7ac4390a3933e034a01f7bbe703",
 
+    "zh:8dd523de854b59f7e837102064f23fcf33ee69d4d46feeb5a67796b7ba03d003",
 
+    "zh:a514911915ab7d7b5fda18a7ca1404ca0496a54088a6ef52e0b92e4e0d7ff85e",
 
+    "zh:b4020c332c2b5b992f56d0e3e7b4940f7dab63f2af5558d913e79834b90b4d80",
 
+    "zh:bdb1c77d22e7accedf4b501f139c306c46dcb58ff693b9a6dcaef356c6749ee1",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/jtopjian/sensu" {
 
+  version     = "0.10.5"
 
+  constraints = "0.10.5"
 
+  hashes = [
 
+    "h1:/i+iYOhp7+nC7rZHJcQ4TWf4POHGhbwShPuvyko+/0s=",
 
+    "h1:DwoEsKZDLh315Q99LFdnzgqJR0kNHTBeUC9rZRJP2iU=",
 
+    "h1:MGRbVNP4L1FNXzAKUwBTUu9loNUGmRJQSndDrubRm7o=",
 
+    "h1:ZMsKGpRtwCSpkxZrpB4jFMxJ+RQCMs9Xed+RLPzMTm4=",
 
+    "zh:3225f4916085c97dd49deab54a8a590f6d32f9e7b07c4781e1da7a639bacc412",
 
+    "zh:45dc4d6edd2943f77967bd50065070e3eece274b9a32a5de4541b80609d53aaf",
 
+    "zh:4a35d980af50e4e86935fe3e1a55baf917f46921bea288abc53f438dc334ada2",
 
+    "zh:6b1bee30e0d0c2713ae684920c3a9ae0d01bb847e616358e254412b382671d4c",
 
+    "zh:7f0d10555eff2748c03a5642e785be3624e304cc174874c6ab52cb05041efecf",
 
+    "zh:7f70a20b92759afd7f5dd9b4877328b657545377e4e6e1f67c9b55e883d08b81",
 
+    "zh:844c3b405620779d06871d9ca9f84fa3745bbae668af8bd790504fd4649fbb7a",
 
+    "zh:95aba67c1ccdf6dd3f75c257f1a91e936fbd0ddb47b21fc85e90b7204abe7c05",
 
+    "zh:97f20679d06fcf74c6dbb30930541c8e12e07e8210213b4437d6b79034b8b60d",
 
+    "zh:c77dd3019a11eb7e047a09e38d8347de1bd1fecc7893c2f52512ede811ab7103",
 
+    "zh:c86d3aa646335ac7d5bb85475e7be115b62adc8d06ab4fb962c7f2874a1b5108",
 
+  ]
 
+}

+ 40 - 0
test/aws-us-gov/mdr-test-modelclient/130-kinesis_firehose_waf_logs/terragrunt.hcl
Целия файл 

@@ -0,0 +1,40 @@
 
+locals {
 
+  # If you want to use any of the variables in _this_ file, you have to load them here.
 
+  # However, they will all be available as inputs to the module loaded in terraform.source
 
+  # below.
 
+
 
+  environment_vars = read_terragrunt_config(find_in_parent_folders("env.hcl"))
 
+  partition_vars = read_terragrunt_config(find_in_parent_folders("partition.hcl"))
 
+  region_vars = read_terragrunt_config(find_in_parent_folders("region.hcl"))
 
+  account_vars = read_terragrunt_config(find_in_parent_folders("account.hcl"))
 
+  global_vars = read_terragrunt_config(find_in_parent_folders("globals.hcl"))
 
+}
 
+
 
+# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
 
+# working directory, into a temporary folder, and execute your Terraform commands in that folder.
 
+terraform {
 
+  # Double slash is intentional and required to show root of modules
 
+  source = "git@github.xdr.accenturefederalcyber.com:mdr-engineering/xdr-terraform-modules.git//base/kinesis_firehose_waf_logs?ref=v2.1.6"
 
+}
 
+
 
+dependency "c2_account_standards" {
 
+  config_path = local.account_vars.locals.c2_account_standards_path
 
+}
 
+
 
+# Include all settings from the root terragrunt.hcl file
 
+include {
 
+  path = find_in_parent_folders()
 
+}
 
+
 
+# These are the variables we have to pass in to use the module specified in the terragrunt source above
 
+inputs = {
 
+  # All of the inputs from the inherited hcl files are available automatically
 
+  # (via the `inputs` section of the root `terragrunt.hcl`). However, modules
 
+  # will be more flexible if you specify particular input values.
 
+  tags = {
 
+    Terraform = "aws/${basename(get_parent_terragrunt_dir())}/${path_relative_to_include()}/"
 
+  }
 
+  cloudtrail_key_arn = dependency.c2_account_standards.outputs.cloudtrail_logging_bucket.kms_key_id
 
+}
 
+terraform_version_constraint = "= 0.15.1"
 
+terragrunt_version_constraint = ">= 0.29, < 0.30"

+ 88 - 0
test/aws-us-gov/mdr-test-modelclient/190-splunk-customer-searchhead/.terraform.lock.hcl
Целия файл 

@@ -0,0 +1,88 @@
 
+# This file is maintained automatically by "terraform init".
 
+# Manual edits may be lost in future updates.
 
+
 
+provider "registry.terraform.io/hashicorp/aws" {
 
+  version     = "3.37.0"
 
+  constraints = "3.37.0"
 
+  hashes = [
 
+    "h1:GeRKgHncFkh8vd+Rlq6G/5D7wgfd9LXLYrfNvLiMy48=",
 
+    "h1:RvLGIfRZfbzY58wUja9B6CvGdgVVINy7zLVBdLqIelA=",
 
+    "h1:Tf6Os+utUxE8rEr/emCXLFEDdCb0Y6rsN4Ee84+aDCQ=",
 
+    "h1:mxnOC4CXzhG+/JiAs6u2QTn6ecDBoiZBqxaXwqp2TB0=",
 
+    "zh:064c9b21bcd69be7a8631ccb3eccb8690c6a9955051145920803ef6ce6fc06bf",
 
+    "zh:277dd05750187a41282cf6e066e882eac0dd0056e3211d125f94bf62c19c4b8b",
 
+    "zh:47050211f72dcbf3d99c82147abd2eefbb7238efb94d5188979f60de66c8a3df",
 
+    "zh:4a4e0d070399a050847545721dae925c192a2d6354802fdfbea73769077acca5",
 
+    "zh:4cbc46f79239c85d69389f9e91ca9a9ebf6a8a937cfada026c5a037fd09130fb",
 
+    "zh:6548dcb1ac4a388ed46034a5317fa74b3b0b0f68eec03393f2d4d09342683f95",
 
+    "zh:75b4a82596aa525d95b0b2847fe648368c6e2b054059c4dc4dcdee01d374b592",
 
+    "zh:75cf5cc674b61c82300667a82650f56722618b119ab0526b47b5ecbb4bbf49d0",
 
+    "zh:93c896682359039960c38eb5a4b29d1cc06422f228db0572b90330427e2a21ec",
 
+    "zh:c7256663aedbc9de121316b6d0623551386a476fc12b8eb77e88532ce15de354",
 
+    "zh:e995c32f49c23b5938200386e08b2a3fd69cf5102b5299366c0608bbeac68429",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/template" {
 
+  version     = "2.2.0"
 
+  constraints = "2.2.0"
 
+  hashes = [
 
+    "h1:0wlehNaxBX7GJQnPfQwTNvvAf38Jm0Nv7ssKGMaG6Og=",
 
+    "h1:12Bac8B6Aq2+18xe8iqp5iYytav2Bw+jG43z/VaK5zI=",
 
+    "h1:94qn780bi1qjrbC3uQtjJh3Wkfwd5+tTtJHOb7KTg9w=",
 
+    "h1:LN84cu+BZpVRvYlCzrbPfCRDaIelSyEx/W9Iwwgbnn4=",
 
+    "zh:01702196f0a0492ec07917db7aaa595843d8f171dc195f4c988d2ffca2a06386",
 
+    "zh:09aae3da826ba3d7df69efeb25d146a1de0d03e951d35019a0f80e4f58c89b53",
 
+    "zh:09ba83c0625b6fe0a954da6fbd0c355ac0b7f07f86c91a2a97849140fea49603",
 
+    "zh:0e3a6c8e16f17f19010accd0844187d524580d9fdb0731f675ffcf4afba03d16",
 
+    "zh:45f2c594b6f2f34ea663704cc72048b212fe7d16fb4cfd959365fa997228a776",
 
+    "zh:77ea3e5a0446784d77114b5e851c970a3dde1e08fa6de38210b8385d7605d451",
 
+    "zh:8a154388f3708e3df5a69122a23bdfaf760a523788a5081976b3d5616f7d30ae",
 
+    "zh:992843002f2db5a11e626b3fc23dc0c87ad3729b3b3cff08e32ffb3df97edbde",
 
+    "zh:ad906f4cebd3ec5e43d5cd6dc8f4c5c9cc3b33d2243c89c5fc18f97f7277b51d",
 
+    "zh:c979425ddb256511137ecd093e23283234da0154b7fa8b21c2687182d9aea8b2",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/hashicorp/vault" {
 
+  version     = "2.19.1"
 
+  constraints = "2.19.1"
 
+  hashes = [
 
+    "h1:04SjcwVTpGqFOAZezd9vmo/ceQGovZL/Cb9kVPjQscQ=",
 
+    "h1:3LNNXigzNkIAALc1v8uRfKmjzlUYyfQH+r/N5plUUeA=",
 
+    "h1:Sqdnqh2CHtEEVdTQom0+qQsgn+gjnVZXk6Xb9iOPQi4=",
 
+    "h1:yz5QWTvycJvjR3Z5EaCLF6UC8hugPAz2eIy9NzymPoI=",
 
+    "zh:0c6ca9d49bc116788015bbf83f7e8e405e4e63bfd9dd198f29d501632bc7d79f",
 
+    "zh:1f13cbe8d6b98a9e0392c72320cd86d5253a09f3c45fe9f4baa2b71660621d1e",
 
+    "zh:365d07bec517cb17523526c3a6f1bd23dbedb7fe8868d28976998c5eff3b9932",
 
+    "zh:3ac807ce39cd11d5a573377b868bc547f1f24ac2fb7bf3d7e1ec5a62ead7c31f",
 
+    "zh:5eb21cf4628353fcbd44231b92d1e027340af98b2ba02aaa01d91b07989caa8c",
 
+    "zh:66bed701cd0372b864ba656c9a01deb15e6cd7ac4390a3933e034a01f7bbe703",
 
+    "zh:8dd523de854b59f7e837102064f23fcf33ee69d4d46feeb5a67796b7ba03d003",
 
+    "zh:a514911915ab7d7b5fda18a7ca1404ca0496a54088a6ef52e0b92e4e0d7ff85e",
 
+    "zh:b4020c332c2b5b992f56d0e3e7b4940f7dab63f2af5558d913e79834b90b4d80",
 
+    "zh:bdb1c77d22e7accedf4b501f139c306c46dcb58ff693b9a6dcaef356c6749ee1",
 
+  ]
 
+}
 
+
 
+provider "registry.terraform.io/jtopjian/sensu" {
 
+  version     = "0.10.5"
 
+  constraints = "0.10.5"
 
+  hashes = [
 
+    "h1:/i+iYOhp7+nC7rZHJcQ4TWf4POHGhbwShPuvyko+/0s=",
 
+    "h1:DwoEsKZDLh315Q99LFdnzgqJR0kNHTBeUC9rZRJP2iU=",
 
+    "h1:MGRbVNP4L1FNXzAKUwBTUu9loNUGmRJQSndDrubRm7o=",
 
+    "h1:ZMsKGpRtwCSpkxZrpB4jFMxJ+RQCMs9Xed+RLPzMTm4=",
 
+    "zh:3225f4916085c97dd49deab54a8a590f6d32f9e7b07c4781e1da7a639bacc412",
 
+    "zh:45dc4d6edd2943f77967bd50065070e3eece274b9a32a5de4541b80609d53aaf",
 
+    "zh:4a35d980af50e4e86935fe3e1a55baf917f46921bea288abc53f438dc334ada2",
 
+    "zh:6b1bee30e0d0c2713ae684920c3a9ae0d01bb847e616358e254412b382671d4c",
 
+    "zh:7f0d10555eff2748c03a5642e785be3624e304cc174874c6ab52cb05041efecf",
 
+    "zh:7f70a20b92759afd7f5dd9b4877328b657545377e4e6e1f67c9b55e883d08b81",
 
+    "zh:844c3b405620779d06871d9ca9f84fa3745bbae668af8bd790504fd4649fbb7a",
 
+    "zh:95aba67c1ccdf6dd3f75c257f1a91e936fbd0ddb47b21fc85e90b7204abe7c05",
 
+    "zh:97f20679d06fcf74c6dbb30930541c8e12e07e8210213b4437d6b79034b8b60d",
 
+    "zh:c77dd3019a11eb7e047a09e38d8347de1bd1fecc7893c2f52512ede811ab7103",
 
+    "zh:c86d3aa646335ac7d5bb85475e7be115b62adc8d06ab4fb962c7f2874a1b5108",
 
+  ]
 
+}

+ 46 - 0
test/aws-us-gov/mdr-test-modelclient/190-splunk-customer-searchhead/terragrunt.hcl
Целия файл 

@@ -0,0 +1,46 @@
 
+locals {
 
+  # If you want to use any of the variables in _this_ file, you have to load them here.
 
+  # However, they will all be available as inputs to the module loaded in terraform.source
 
+  # below.
 
+  environment_vars = read_terragrunt_config(find_in_parent_folders("env.hcl"))
 
+  partition_vars = read_terragrunt_config(find_in_parent_folders("partition.hcl"))
 
+  region_vars = read_terragrunt_config(find_in_parent_folders("region.hcl"))
 
+  account_vars = read_terragrunt_config(find_in_parent_folders("account.hcl"))
 
+  global_vars = read_terragrunt_config(find_in_parent_folders("globals.hcl"))
 
+}
 
+
 
+# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
 
+# working directory, into a temporary folder, and execute your Terraform commands in that folder.
 
+terraform {
 
+  # Double slash is intentional and required to show root of modules
 
+  source = "git@github.xdr.accenturefederalcyber.com:mdr-engineering/xdr-terraform-modules.git//base/splunk_servers/customer_searchhead?ref=v1.24.1"
 
+}
 
+
 
+dependency "vpc" {
 
+  config_path = "../010-vpc-splunk"
 
+}
 
+
 
+# Include all settings from the root terragrunt.hcl file
 
+include {
 
+  path = find_in_parent_folders()
 
+}
 
+
 
+# These are the variables we have to pass in to use the module specified in the terragrunt source above
 
+inputs = {
 
+  # All of the inputs from the inherited hcl files are available automatically
 
+  # (via the `inputs` section of the root `terragrunt.hcl`). However, modules
 
+  # will be more flexible if you specify particular input values.
 
+  tags = {
 
+    Purpose = "Splunk Customer-Accessible Searchhead"
 
+    Terraform = "aws/${basename(get_parent_terragrunt_dir())}/${path_relative_to_include()}/"
 
+  }
 
+  prefix = local.account_vars.locals.splunk_prefix
 
+  instance_type = local.account_vars.locals.instance_types["splunk-sh"]
 
+  vpc_id = dependency.vpc.outputs.vpc_id
 
+  vpc_cidr = local.account_vars.locals.vpc_info["vpc-splunk"]["cidr"]
 
+  azs = dependency.vpc.outputs.azs
 
+  private_subnets = dependency.vpc.outputs.private_subnets
 
+  public_subnets = dependency.vpc.outputs.public_subnets
 
+}
 
+terraform_version_constraint = "= 0.15.1"
 
+terragrunt_version_constraint = ">= 0.29, < 0.30"

+ 12 - 0
test/aws-us-gov/mdr-test-modelclient/account.hcl
Целия файл 

@@ -11,6 +11,7 @@ locals {
 
   ]
 
   splunk_legacy_cidr = [ ] # Should not be needed for new customers
 
   splunk_asg_sizes   = [ 1, 1, 1 ] # How many indexers in each site
 
+  splunk_customer_cidrs = [ ] # List of customer's IP addresses that can access the search head
 
   
   account_tags = {
 
     "Client": local.splunk_prefix
 
@@ -54,6 +55,17 @@ locals {
 
       "/tmp": 4,  # minimum: 4
 
       "/opt/splunk": 30, # No minimum; not in base image
 
     },
 
+    "customer_searchhead" = {
 
+      "swap": 8,  # minimum: 8
 
+      "/": 10,    # minimum: 10
 
+      "/home": 4, # minimum: 4
 
+      "/var": 15, # minimum: 15
 
+      "/var/tmp": 4, # minimum: 4
 
+      "/var/log": 8, # minimum: 8
 
+      "/var/log/audit": 8, # minimum: 8
 
+      "/tmp": 4,  # minimum: 4
 
+      "/opt/splunk": 60, # No minimum; not in base image
 
+    },
 
     "indexer" = {
 
       "swap": 8,  # minimum: 8
 
       "/": 10,    # minimum: 10

+ 1 - 0
test/env.hcl
Целия файл 

@@ -16,6 +16,7 @@ locals {
 
   hec = "moose-hec.xdrtest.accenturefederalcyber.com"
 
   hec_pub = "moose-hec.xdrtest.accenturefederalcyber.com"
 
   hec_pub_ack = "moose-hec-ack.xdrtest.accenturefederalcyber.com"
 
+  aws_waf_logs_hec_token = "FA38B8DD-1398-46D0-BD79-BA046C6064B0" # HEC token for posting WAF logs to the moose HEC
 
 
   # When there are multiples, put govcloud first, then commercial, and alternate if there are more than 2.
 
   # Put any standalone IPs at the end.