Terraform Module Library

1---2name: terraform-module-library3description: Build reusable Terraform modules for AWS, Azure, GCP, and OCI infrastructure following infrastructure-as-code best practices. Use when creating infrastructure modules, standardizing cloud provisioning, or implementing reusable IaC components.4---5 6# Terraform Module Library7 8Production-ready Terraform module patterns for AWS, Azure, GCP, and OCI infrastructure.9 10## Purpose11 12Create reusable, well-tested Terraform modules for common cloud infrastructure patterns across multiple cloud providers.13 14## When to Use15 16- Build reusable infrastructure components17- Standardize cloud resource provisioning18- Implement infrastructure as code best practices19- Create multi-cloud compatible modules20- Establish organizational Terraform standards21 22## Module Structure23 24```25terraform-modules/26├── aws/27│   ├── vpc/28│   ├── eks/29│   ├── rds/30│   └── s3/31├── azure/32│   ├── vnet/33│   ├── aks/34│   └── storage/35├── gcp/36│   ├── vpc/37│   ├── gke/38│   └── cloud-sql/39└── oci/40    ├── vcn/41    ├── oke/42    └── object-storage/43```44 45## Standard Module Pattern46 47```48module-name/49├── main.tf          # Main resources50├── variables.tf     # Input variables51├── outputs.tf       # Output values52├── versions.tf      # Provider versions53├── README.md        # Documentation54├── examples/        # Usage examples55│   └── complete/56│       ├── main.tf57│       └── variables.tf58└── tests/           # Terratest files59    └── module_test.go60```61 62## AWS VPC Module Example63 64**main.tf:**65 66```hcl67resource "aws_vpc" "main" {68  cidr_block           = var.cidr_block69  enable_dns_hostnames = var.enable_dns_hostnames70  enable_dns_support   = var.enable_dns_support71 72  tags = merge(73    {74      Name = var.name75    },76    var.tags77  )78}79 80resource "aws_subnet" "private" {81  count             = length(var.private_subnet_cidrs)82  vpc_id            = aws_vpc.main.id83  cidr_block        = var.private_subnet_cidrs[count.index]84  availability_zone = var.availability_zones[count.index]85 86  tags = merge(87    {88      Name = "${var.name}-private-${count.index + 1}"89      Tier = "private"90    },91    var.tags92  )93}94 95resource "aws_internet_gateway" "main" {96  count  = var.create_internet_gateway ? 1 : 097  vpc_id = aws_vpc.main.id98 99  tags = merge(100    {101      Name = "${var.name}-igw"102    },103    var.tags104  )105}106```107 108**variables.tf:**109 110```hcl111variable "name" {112  description = "Name of the VPC"113  type        = string114}115 116variable "cidr_block" {117  description = "CIDR block for VPC"118  type        = string119  validation {120    condition     = can(regex("^([0-9]{1,3}\\.){3}[0-9]{1,3}/[0-9]{1,2}$", var.cidr_block))121    error_message = "CIDR block must be valid IPv4 CIDR notation."122  }123}124 125variable "availability_zones" {126  description = "List of availability zones"127  type        = list(string)128}129 130variable "private_subnet_cidrs" {131  description = "CIDR blocks for private subnets"132  type        = list(string)133  default     = []134}135 136variable "enable_dns_hostnames" {137  description = "Enable DNS hostnames in VPC"138  type        = bool139  default     = true140}141 142variable "tags" {143  description = "Additional tags"144  type        = map(string)145  default     = {}146}147```148 149**outputs.tf:**150 151```hcl152output "vpc_id" {153  description = "ID of the VPC"154  value       = aws_vpc.main.id155}156 157output "private_subnet_ids" {158  description = "IDs of private subnets"159  value       = aws_subnet.private[*].id160}161 162output "vpc_cidr_block" {163  description = "CIDR block of VPC"164  value       = aws_vpc.main.cidr_block165}166```167 168## Best Practices169 1701. **Use semantic versioning** for modules1712. **Document all variables** with descriptions1723. **Provide examples** in examples/ directory1734. **Use validation blocks** for input validation1745. **Output important attributes** for module composition1756. **Pin provider versions** in versions.tf1767. **Use locals** for computed values1778. **Implement conditional resources** with count/for_each1789. **Test modules** with Terratest17910. **Tag all resources** consistently180 181**Reference:** See `references/aws-modules.md` and `references/oci-modules.md`182 183## Module Composition184 185```hcl186module "vpc" {187  source = "../../modules/aws/vpc"188 189  name               = "production"190  cidr_block         = "10.0.0.0/16"191  availability_zones = ["us-west-2a", "us-west-2b", "us-west-2c"]192 193  private_subnet_cidrs = [194    "10.0.1.0/24",195    "10.0.2.0/24",196    "10.0.3.0/24"197  ]198 199  tags = {200    Environment = "production"201    ManagedBy   = "terraform"202  }203}204 205module "rds" {206  source = "../../modules/aws/rds"207 208  identifier     = "production-db"209  engine         = "postgres"210  engine_version = "15.3"211  instance_class = "db.t3.large"212 213  vpc_id     = module.vpc.vpc_id214  subnet_ids = module.vpc.private_subnet_ids215 216  tags = {217    Environment = "production"218  }219}220```221 222 223## Testing224 225```go226// tests/vpc_test.go227package test228 229import (230    "testing"231    "github.com/gruntwork-io/terratest/modules/terraform"232    "github.com/stretchr/testify/assert"233)234 235func TestVPCModule(t *testing.T) {236    terraformOptions := &terraform.Options{237        TerraformDir: "../examples/complete",238    }239 240    defer terraform.Destroy(t, terraformOptions)241    terraform.InitAndApply(t, terraformOptions)242 243    vpcID := terraform.Output(t, terraformOptions, "vpc_id")244    assert.NotEmpty(t, vpcID)245}246```247 248## Related Skills249 250- `multi-cloud-architecture` - For architectural decisions251- `cost-optimization` - For cost-effective designs