adding create server module

tvo0813 · tvo0813 · commit 2d4e10ff0bdb · 2025-05-30T17:09:15.000-07:00
diff --git a/enos/enos-descriptions.hcl b/enos/enos-descriptions.hcl
@@ -25,6 +25,11 @@ globals {
       for Vault target nodes to access it the AWSKMS key are handled in the target modules.
     EOF
 
+    create_test_servers = <<-EOF
+      Provision test servers required for development and QA activities. Additional servers will be
+      deployed as necessary to support testing requirements (e.g., OpenLDAP).
+    EOF
+
     create_vault_cluster = <<-EOF
       Create the the Vault cluster. In this module we'll install, configure, start, initialize and
       unseal all the nodes in the Vault. After initialization it also enables various audit engines.
diff --git a/enos/enos-modules.hcl b/enos/enos-modules.hcl
@@ -48,6 +48,12 @@ module "create_vpc" {
   common_tags = var.tags
 }
 
+module "create_test_servers" {
+  source = "./modules/create_test_servers"
+
+  ssh_keypair  = var.aws_ssh_keypair_name
+}
+
 module "choose_follower_host" {
   source = "./modules/choose_follower_host"
 }
diff --git a/enos/enos-scenario-smoke.hcl b/enos/enos-scenario-smoke.hcl
@@ -317,6 +317,21 @@ scenario "smoke" {
     }
   }
 
+  step "create_test_servers" {
+    description = global.description.create_test_servers
+    module      = module.create_test_servers
+    depends_on  = [step.create_vpc]
+
+    providers = {
+      enos = local.enos_provider[matrix.distro]
+    }
+
+    variables {
+      vpc_id                 = step.create_vpc.id
+      vpc_security_group_ids = [step.create_vpc.security_group_id]
+    }
+  }
+
   step "get_local_metadata" {
     description = global.description.get_local_metadata
     skip_step   = matrix.artifact_source != "local"
diff --git a/enos/modules/create_test_servers/start/main.tf b/enos/modules/create_test_servers/start/main.tf
@@ -0,0 +1,91 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: BUSL-1.1
+
+locals {
+  // Variables
+  instance_types = {
+    "arm64"  = var.instance_types["arm64"]
+    "x86_64" = var.instance_types["amd64"]
+  }
+  instance_type = local.instance_types[data.aws_ami.amazon_linux.architecture]
+  name_prefix = "enos-test-server-${random_id.unique_suffix.hex}"
+
+}
+
+data "aws_region" "current" {}
+
+# Generates a unique suffix for the EC2 tag
+resource "random_id" "unique_suffix" {
+  byte_length = 4
+}
+
+# Lookup latest Amazon Linux 2 AMI dynamically
+data "aws_ami" "amazon_linux" {
+  most_recent = true
+  owners      = ["amazon"]
+
+  filter {
+    name   = "${local.name_prefix}-ami"
+    values = ["amzn2-ami-hvm-*-x86_64-gp2"]
+  }
+
+  filter {
+    name   = "virtualization-type"
+    values = ["hvm"]
+  }
+}
+
+data "aws_ec2_instance_type_offerings" "instance" {
+  filter {
+    name   = "instance-type"
+    values = [local.instance_type]
+  }
+
+  location_type = "availability-zone"
+}
+
+data "aws_availability_zones" "available" {
+  state = "available"
+
+  filter {
+    name   = "${local.name_prefix}-zone"
+    values = data.aws_ec2_instance_type_offerings.instance.locations
+  }
+}
+
+# Get subnets in the given VPC across available AZs
+data "aws_subnets" "vpc_subnets" {
+  filter {
+    name   = "${local.name_prefix}-subnets"
+    values = data.aws_availability_zones.available.names
+  }
+
+  filter {
+    name   = "${local.name_prefix}-vpc-id"
+    values = [var.vpc_id]
+  }
+}
+
+# Create the EC2 instance
+resource "aws_instance" "enos_test_server" {
+  ami                                  = data.aws_ami.amazon_linux.id
+  key_name                             = var.ssh_keypair
+  instance_initiated_shutdown_behavior = "terminate"
+  instance_type                        = local.instance_type
+  subnet_id                            = element(data.aws_subnets.vpc_subnets.ids, 0)
+  vpc_security_group_ids               = var.vpc_security_group_ids
+
+  # Install Docker using user_data script
+  user_data = <<-EOF
+              #!/bin/bash
+              yum update -y
+              amazon-linux-extras install docker -y
+              systemctl start docker
+              systemctl enable docker
+              usermod -aG docker ec2-user
+              EOF
+
+  tags = {
+    Name = "${local.name_prefix}-ec2"
+  }
+}
diff --git a/enos/modules/create_test_servers/start/outputs.tf b/enos/modules/create_test_servers/start/outputs.tf
@@ -0,0 +1,42 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: BUSL-1.1
+
+output "instance_id" {
+  description = "ID of the EC2 instance"
+  value       = aws_instance.enos_test_server.id
+}
+
+output "instance_public_ip" {
+  description = "Public IP address of the EC2 instance"
+  value       = aws_instance.enos_test_server.public_ip
+}
+
+output "instance_private_ip" {
+  description = "Private IP address of the EC2 instance"
+  value       = aws_instance.enos_test_server.private_ip
+}
+
+output "instance_ami_id" {
+  description = "AMI ID used for the EC2 instance"
+  value       = data.aws_ami.amazon_linux.id
+}
+
+output "instance_type" {
+  description = "Instance type used for the EC2 instance"
+  value       = local.instance_type
+}
+
+output "aws_region" {
+  description = "AWS region where resources are deployed"
+  value       = data.aws_region.current.name
+}
+
+output "subnet_id" {
+  description = "Subnet ID where the EC2 instance is launched"
+  value       = aws_instance.enos_test_server.subnet_id
+}
+
+output "availability_zone" {
+  description = "Availability Zone of the EC2 instance"
+  value       = aws_instance.enos_test_server.availability_zone
+}
diff --git a/enos/modules/create_test_servers/start/variables.tf b/enos/modules/create_test_servers/start/variables.tf
@@ -0,0 +1,29 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: BUSL-1.1
+
+variable "instance_types" {
+  description = "The instance types to use depending on architecture"
+  type = object({
+    amd64 = string
+    arm64 = string
+  })
+  default = {
+    amd64 = "t3a.medium"
+    arm64 = "t4g.medium"
+  }
+}
+
+variable "ssh_keypair" {
+  description = "SSH keypair used to connect to EC2 instances"
+  type        = string
+}
+
+variable "vpc_id" {
+  description = "The identifier of the VPC where the target instances will be created"
+  type        = string
+}
+
+variable "vpc_security_group_ids" {
+  description = "The identifier of the VPC Security Group IDs where the server instance will be created"
+  type        = string
+}
diff --git a/enos/modules/create_vpc/outputs.tf b/enos/modules/create_vpc/outputs.tf
@@ -20,3 +20,8 @@ output "cluster_id" {
   description = "A unique string associated with the VPC"
   value       = random_string.cluster_id.result
 }
+
+output "security_group_id" {
+  description = "The VPC security group"
+  value       = aws_security_group.default.id
+}

Original file line number	Diff line number	Diff line change
`@@ -48,6 +48,12 @@ module "create_vpc" {`
`48`	`48`	`common_tags = var.tags`
`49`	`49`	`}`
`50`	`50`
	`51`	`+module "create_test_servers" {`
	`52`	`+ source = "./modules/create_test_servers"`
	`53`	`+`
	`54`	`+ ssh_keypair = var.aws_ssh_keypair_name`
	`55`	`+}`
	`56`	`+`
`51`	`57`	`module "choose_follower_host" {`
`52`	`58`	`source = "./modules/choose_follower_host"`
`53`	`59`	`}`
Original file line number	Diff line number	Diff line change
`@@ -20,3 +20,8 @@ output "cluster_id" {`
`20`	`20`	`description = "A unique string associated with the VPC"`
`21`	`21`	`value = random_string.cluster_id.result`
`22`	`22`	`}`
	`23`	`+`
	`24`	`+output "security_group_id" {`
	`25`	`+ description = "The VPC security group"`
	`26`	`+ value = aws_security_group.default.id`
	`27`	`+}`