This repository contains several Terraform modules that can be used to deploy parts of, or an entire, AWS Backup solution, such as AWS Backup Plans, Selections, and Vaults. It also contains the AWS Backup module to combine all three to create a single simple deployment.
Due to previous bugs 8431 and 8737 we need to set the minimum aws provider version at 2.34.0
- backup - A Terraform module that can be used to create a new Vault with a Backup Plan and Selection as well as creating a new IAM Backup Role.
- iam_default - A terraform module that can be used to create the default AWS Backup service role that would otherwise be created if deploying Backup for the first time via the console. The naming, description, and applied policies match what AWS provide for you on first use. Creating this default role aids use of this module in non-managed environments, as well as providing the default role that may be used when performing manual restore jobs.
- plan - A Terraform module that can be used to create an AWS Backup Plan. Backup Plans enable you to define your backup requirements and then apply them to the AWS resources you want backed up. You can create separate backup plans that meet specific business and regulatory compliance requirements, helping to ensure that each of your AWS resources are backed up and protected.
- selection - A Terraform module that can be used to create an AWS Backup Selection. A Selection allows you to "select" resources to be backed up either by ARN or by tag matching. You can have multiple Selections in a Plan.
- vault - A Terraform module to create an AWS Backup Vault to store backups. A Vault is a container that you organize your backups in. You can use backup vaults to set the AWS Key Management Service (AWS KMS) encryption key that is used to encrypt backups in the backup vault and to control access to the backups in the backup vault. If you require different encryption keys or access policies for different groups of backups, you can optionally create multiple backup vaults. Otherwise, you can have all your backups organized in the default backup vault.
- Using aws-terraform-iam_resources to create the AWS Backup Role if selected in Selection module.
Changes were required while adding terraform 0.12 compatibility.
The following module variable was updated due to requirements for a reserved name:
lifecycle
->lifecycle_bu