docs: add blue=green

Author: FacerAin

README.md

@@ -12,7 +12,8 @@ Repository for terraform use cases
 |---|---|---|
 |Basic EC2|Basic EC2 Setting for testing terraform. | [Link](https://github.com/Terraform-Canvas/terraform-usecases/tree/main/basic-ec2)
 |Auto Scailing using AWS | Build auto scailing group for scale in-out.|[Link](https://github.com/Terraform-Canvas/terraform-usecases/tree/main/autoscailing)
-|Blue-Green deployment|Build Blue-Green deployment using ALB|TBA
+|Blue-Green deployment|Build Blue-Green deployment using ALB|[Link](https://github.com/Terraform-Canvas/terraform-usecases/tree/main/blue-green)
+|Blue-Green deployme
 |EKS Cluster|Build container cluster system using EKS|TBA|
 |Datadog Monitoring|Build monitoring system using Datadog|TBA
 |Slack alert|Build slack alert system using AWS Chatbot|TBA

blue-green/blue.tf

@@ -0,0 +1,39 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+resource "aws_instance" "blue" {
+  count = var.enable_blue_env ? var.blue_instance_count : 0
+
+  ami                    = data.aws_ami.amazon_linux.id
+  instance_type          = "t2.micro"
+  subnet_id              = module.vpc.private_subnets[count.index % length(module.vpc.private_subnets)]
+  vpc_security_group_ids = [module.app_security_group.security_group_id]
+  user_data = templatefile("${path.module}/init-script.sh", {
+    file_content = "version 1.0 - #${count.index}"
+  })
+
+  tags = {
+    Name = "blue-${count.index}"
+  }
+}
+
+resource "aws_lb_target_group" "blue" {
+  name     = "blue-tg-${random_pet.app.id}-lb"
+  port     = 80
+  protocol = "HTTP"
+  vpc_id   = module.vpc.vpc_id
+
+  health_check {
+    port     = 80
+    protocol = "HTTP"
+    timeout  = 5
+    interval = 10
+  }
+}
+
+resource "aws_lb_target_group_attachment" "blue" {
+  count            = length(aws_instance.blue)
+  target_group_arn = aws_lb_target_group.blue.arn
+  target_id        = aws_instance.blue[count.index].id
+  port             = 80
+}

blue-green/green.tf

@@ -0,0 +1,36 @@
+resource "aws_instance" "green" {
+  count = var.enable_green_env ? var.green_instance_count : 0
+
+  ami                    = data.aws_ami.amazon_linux.id
+  instance_type          = "t2.micro"
+  subnet_id              = module.vpc.private_subnets[count.index % length(module.vpc.private_subnets)]
+  vpc_security_group_ids = [module.app_security_group.security_group_id]
+  user_data = templatefile("${path.module}/init-script.sh", {
+    file_content = "version 1.1 - #${count.index}"
+  })
+
+  tags = {
+    Name = "green-${count.index}"
+  }
+}
+
+resource "aws_lb_target_group" "green" {
+  name     = "green-tg-${random_pet.app.id}-lb"
+  port     = 80
+  protocol = "HTTP"
+  vpc_id   = module.vpc.vpc_id
+
+  health_check {
+    port     = 80
+    protocol = "HTTP"
+    timeout  = 5
+    interval = 10
+  }
+}
+
+resource "aws_lb_target_group_attachment" "green" {
+  count            = length(aws_instance.green)
+  target_group_arn = aws_lb_target_group.green.arn
+  target_id        = aws_instance.green[count.index].id
+  port             = 80
+}

blue-green/init-script.sh

@@ -0,0 +1,9 @@
+#!/bin/bash
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+sudo yum update -y
+sudo yum install httpd -y
+sudo systemctl enable httpd
+sudo systemctl start httpd
+echo "${file_content}!" > /var/www/html/index.html

blue-green/main.tf

@@ -0,0 +1,98 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+provider "aws" {
+  region = var.region
+}
+
+data "aws_availability_zones" "available" {
+  state = "available"
+  filter {
+    name   = "opt-in-status"
+    values = ["opt-in-not-required"]
+  }
+}
+
+module "vpc" {
+  source  = "terraform-aws-modules/vpc/aws"
+  version = "3.19.0"
+
+  name = "main-vpc"
+  cidr = var.vpc_cidr_block
+
+  azs             = data.aws_availability_zones.available.names
+  private_subnets = slice(var.private_subnet_cidr_blocks, 0, var.private_subnet_count)
+  public_subnets  = slice(var.public_subnet_cidr_blocks, 0, var.public_subnet_count)
+
+  enable_nat_gateway = true
+  enable_vpn_gateway = var.enable_vpn_gateway
+}
+
+module "app_security_group" {
+  source  = "terraform-aws-modules/security-group/aws//modules/web"
+  version = "4.17.1"
+
+  name        = "web-sg"
+  description = "Security group for web-servers with HTTP ports open within VPC"
+  vpc_id      = module.vpc.vpc_id
+
+  ingress_cidr_blocks = [module.vpc.vpc_cidr_block]
+}
+
+module "lb_security_group" {
+  source  = "terraform-aws-modules/security-group/aws//modules/web"
+  version = "4.17.1"
+
+  name        = "lb-sg"
+  description = "Security group for load balancer with HTTP ports open to world"
+  vpc_id      = module.vpc.vpc_id
+
+  ingress_cidr_blocks = ["0.0.0.0/0"]
+}
+
+data "aws_ami" "amazon_linux" {
+  most_recent = true
+  owners      = ["amazon"]
+
+  filter {
+    name   = "name"
+    values = ["amzn2-ami-hvm-*-x86_64-gp2"]
+  }
+}
+
+resource "random_pet" "app" {
+  length    = 2
+  separator = "-"
+}
+
+resource "aws_lb" "app" {
+  name               = "main-app-${random_pet.app.id}-lb"
+  internal           = false
+  load_balancer_type = "application"
+  subnets            = module.vpc.public_subnets
+  security_groups    = [module.lb_security_group.security_group_id]
+}
+
+resource "aws_lb_listener" "app" {
+  load_balancer_arn = aws_lb.app.arn
+  port              = "80"
+  protocol          = "HTTP"
+
+  default_action {
+    type = "forward"
+    forward {
+      target_group {
+        arn    = aws_lb_target_group.blue.arn
+        weight = lookup(local.traffic_dist_map[var.traffic_distribution], "blue", 100)
+      }
+      target_group {
+        arn    = aws_lb_target_group.green.arn
+        weight = lookup(local.traffic_dist_map[var.traffic_distribution], "green", 0)
+      }
+      stickiness {
+        enabled  = false
+        duration = 1
+      }
+    }
+  }
+}

blue-green/outputs.tf

@@ -0,0 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+output "lb_dns_name" {
+  value = aws_lb.app.dns_name
+}

blue-green/terraform.tf

@@ -0,0 +1,18 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+terraform {
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 4.15.0"
+    }
+
+    random = {
+      source  = "hashicorp/random"
+      version = "3.4.3"
+    }
+  }
+
+  required_version = "~> 1.4.6"
+}

blue-green/variables.tf

@@ -0,0 +1,116 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
+variable "region" {
+  description = "The region Terraform deploys your instances"
+  type        = string
+  default     = "us-west-2"
+}
+
+variable "vpc_cidr_block" {
+  description = "CIDR block for VPC"
+  type        = string
+  default     = "10.0.0.0/16"
+}
+
+variable "enable_vpn_gateway" {
+  description = "Enable a VPN gateway in your VPC."
+  type        = bool
+  default     = false
+}
+
+variable "public_subnet_count" {
+  description = "Number of public subnets."
+  type        = number
+  default     = 2
+}
+
+variable "private_subnet_count" {
+  description = "Number of private subnets."
+  type        = number
+  default     = 2
+}
+
+variable "public_subnet_cidr_blocks" {
+  description = "Available cidr blocks for public subnets"
+  type        = list(string)
+  default = [
+    "10.0.1.0/24",
+    "10.0.2.0/24",
+    "10.0.3.0/24",
+    "10.0.4.0/24",
+    "10.0.5.0/24",
+    "10.0.6.0/24",
+    "10.0.7.0/24",
+    "10.0.8.0/24",
+  ]
+}
+
+variable "private_subnet_cidr_blocks" {
+  description = "Available cidr blocks for private subnets"
+  type        = list(string)
+  default = [
+    "10.0.101.0/24",
+    "10.0.102.0/24",
+    "10.0.103.0/24",
+    "10.0.104.0/24",
+    "10.0.105.0/24",
+    "10.0.106.0/24",
+    "10.0.107.0/24",
+    "10.0.108.0/24",
+  ]
+}
+
+variable "enable_blue_env" {
+  description = "Enable blue environment"
+  type        = bool
+  default     = true
+}
+
+variable "blue_instance_count" {
+  description = "Number of instances in blue environment"
+  type        = number
+  default     = 2
+}
+
+variable "enable_green_env" {
+  description = "Enable green environment"
+  type        = bool
+  default     = true
+}
+
+variable "green_instance_count" {
+  description = "Number of instances in green environment"
+  type        = number
+  default     = 2
+}
+
+locals {
+  traffic_dist_map = {
+    blue = {
+      blue  = 100
+      green = 0
+    }
+    blue-90 = {
+      blue  = 90
+      green = 10
+    }
+    split = {
+      blue  = 50
+      green = 50
+    }
+    green-90 = {
+      blue  = 10
+      green = 90
+    }
+    green = {
+      blue  = 0
+      green = 100
+    }
+  }
+}
+
+variable "traffic_distribution" {
+  description = "Levels of traffic distribution"
+  type        = string
+}