# Set common variables for the environment. This is automatically pulled in in the root terragrunt.hcl configuration to # feed forward to the child modules. # # NOTE: There is only one copy of this, in the `common/` tree, and the others are symbolic links. locals { aws_partition = "aws" aws_partition_alias = "commercial" common_services_account = "471284459109" common_profile = "${local.aws_partition == "aws-us-gov" ? "govcloud" : "commercial"}" tfstate_region = "us-east-1" binaries_key = "key/b51760b2-d6e1-438a-afd4-1e56f5ac82ef" # Statically setting the 'last known good' ami gives us some added flexibility # in building amis more regularly. # # Don't forget `lifecycle { ignore_changes = ["ami"] }` in yoru ec2 # builds! amis = { "rhel7-base" = "ami-0de46d7d1a164b307" "rhel7-master" = "ami-0114330666839f2b9" "rhel7-minion" = "ami-0425efbff72b3c702" "ubuntu1804-base" = "TBD" "ubuntu1804-minion" = "TBD" } default_ami = local.amis["rhel7-minion"] # Allows us to easily change to a new base standard # If you need the raw list of all accounts, see `account_list` below account_map = { "prod" = [ "477548533976", # Legacy MDR Prod "045312110490", # mdr-prod-c2 "425831147305", # mdr-prod-modelclient "369723129071", # mdr-prod-malware # These two apparently don't have the account-standards / skeleton # set up for them (yet?) For now I'm leaving them commented out # "821415252513", # mdr-prod-nihors # "153282776295", # mdr-prod-bas "815967312032", # mdr-prod-doed "752106061897", # mdr-prod-frtib "054411035179", # mdr-prod-ca-c19 ], "test" = [ "527700175026", # Legacy MDR Test "816914342178", # mdr-test-c2 "449047653882", # mdr-test-modelclient "404265901253", # mdr-test-malware ], "common" = [ "471284459109", # mdr-common-services "350838957895", # MDR Service Root # "035764279020", # MDR Playground / "Duane Test" "228011623757", # mdr-dev-ai "952430311316", # mdr-cyber-range ], } # flatten the map into a single list account_list = flatten([ for env, accounts in local.account_map : accounts ]) # This is similar to the account_map, but used for "what accounts am I responsible for"? responsible_accounts = { "prod" = concat(local.account_map["prod"], local.account_map["common"]), "test" = local.account_map["test"], "common" = concat(local.account_map["prod"], local.account_map["common"], local.account_map["test"]), } partition_tags = { aws_partition = local.aws_partition } customer_accounts = [ "392153378647", # CA Dept of Health (MSOCI-1637) "083790825559", #web-dev "096166358174", #feedzai-dev "475533160228", #datalake-dev "588572764859", #ava-dev "612341127123", #cami-dev "663460946890", #generalservices-dev "697684692929", #analytics-dev "741253843590", #workloads-dev "826947492278", #dsop-dev "023060730861", #security-prod "067595219623", #ava-prod "119243463525", #dsop-prod "241888897263", #cami-prod "457319674785", #analytics-prod "476093827706", #datalake-prod "592479024479", #workloads-prod "625579355395", #web-prod "650564742306", #feedzai "689680997102", #generalservices-prod "892774870883", # frtib-alight "196740810102", # FRTIB-Alight customer "208374121982", # FRTIB-Alight customer "361451144797", # FRTIB-Alight customer "421358389265", # FRTIB-Alight customer "457704260925", # FRTIB-Alight customer "518442164384", # FRTIB-Alight customer "729220298640", # FRTIB-Alight customer "887194230768", # FRTIB-Alight customer "892774870883", # FRTIB-Alight customer "924667097788", # FRTIB-Alight customer "941092670900", # FRTIB-Alight customer "963174199075" # FRTIB-Alight customer ] }