Skip to content

Instantly share code, notes, and snippets.

View karl-cardenas-coding's full-sized avatar

Karl Cardenas karl-cardenas-coding

34 followers · 11 following
View GitHub Profile
@karl-cardenas-coding
karl-cardenas-coding / new-car.md
Created July 19, 2020 03:40
Markdown example for adding content to a Hugo project
title New Car
date 2020-07-18 15:20:47 -0700
draft false

A car for everyone

Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry's standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a type specimen book. It has survived not only five centuries, but also the leap into electronic typesetting, remaining essentially unchanged. It was popularised in the 1960s with the release of Letraset sheets containing Lorem Ipsum passages, and more recently with desktop publishing software like Aldus PageMaker including versions of Lorem Ipsum

@karl-cardenas-coding
karl-cardenas-coding / provider.tf
Created August 17, 2020 23:32
provider example
provider "aws" {
access_key = "mock_access_key"
region = "us-east-1"
s3_force_path_style = true
secret_key = "mock_secret_key"
skip_credentials_validation = true
skip_metadata_api_check = true
skip_requesting_account_id = true
endpoints {
@karl-cardenas-coding
karl-cardenas-coding / main.tf
Created August 19, 2020 01:27
#############################
# DynamoDB
#############################
resource "aws_dynamodb_table" "main-table" {
name = var.table-name
billing_mode = "PROVISIONED"
read_capacity = 2
write_capacity = 2
hash_key = "orderId"
range_key = "customerId"
@karl-cardenas-coding
karl-cardenas-coding / signer.tf
Last active December 5, 2020 18:22
Enabling AWS Code Signing
##############################################
# Code Signing Resources Option 1 & Option 2
#############################################
resource "aws_signer_signing_profile" "abc-signer-profile" {
name_prefix = "abc_"
platform_id = "AWSLambda-SHA384-ECDSA"
tags = var.tags
}
@karl-cardenas-coding
karl-cardenas-coding / lambda.tf
Created December 5, 2020 18:27
An example of a Lambda using code signing
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
.....
.....
code_signing_config_arn = aws_lambda_code_signing_config.abc-signer-profile-config.arn
}
@karl-cardenas-coding
karl-cardenas-coding / Lambda-option-one.tf
Last active December 5, 2020 18:42
Option 1 Code Signing Lambda
######################################
Lambda Resources Option 1
######################################
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
s3_key = aws_signer_signing_job.build_signing_job.signed_object[0]["s3"][0]["key"]
function_name = var.lambda-name
handler = "lambda_function.lambda_handler"
memory_size = 128
runtime = "python3.8"
@karl-cardenas-coding
karl-cardenas-coding / option-1-lookup.tf
Created December 5, 2020 18:56
#####################################
Lambda Resources Option 1
#####################################
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
s3_key = aws_signer_signing_job.build_signing_job.signed_object[0]["s3"][0]["key"]
.....
.....
code_signing_config_arn = aws_lambda_code_signing_config.abc-signer-profile-config.arn
@karl-cardenas-coding
karl-cardenas-coding / option2.tf
Last active December 5, 2020 19:11
Example of AWS Lambda with code signing - option 2
######################################
# Lambda Resources Option 2
######################################
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
s3_key = aws_signer_signing_job.build_signing_job.signed_object[0]["s3"][0]["key"]
function_name = var.lambda-name
handler = "lambda_function.lambda_handler"
memory_size = 128
runtime = "python3.8"
@karl-cardenas-coding
karl-cardenas-coding / option-3.tf
Created December 5, 2020 19:26
An example of using AWS Code Signing with a Lambda
#######################################
# Lambda Resources Option 3
#######################################
#In this scenario the Lambda is zipped and upload outside of the terraform execution
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
# s3_key = aws_signer_signing_job.build_signing_job.signed_object[0]["s3"][0]["key"]
s3_key = local.lambdaSource
function_name = var.lambda-name
handler = "lambda_function.lambda_handler"
@karl-cardenas-coding
karl-cardenas-coding / Fancy.tf
Last active December 6, 2020 01:02
################################################
# Lambda Resources Option 3 - Multiple Lambdas
################################################
#In this scenario the Lambda is zipped and upload outside of the terraform execution
resource "aws_lambda_function" "test_lambda" {
s3_bucket = var.code-bucket
s3_key = local.signedSourceList[index(local.trimPrefix, "lambda")]
# ^ Returns "signed/lambda-3ed11736-6655-4448-935d-659cd0428b90.zip"
....
....