Auto-generated

This page is generated by terraform-docs at build time from the infra/ repo. Do not edit manually.

Vault Grafana¶

Self-managed Grafana instance on EC2 for analytics dashboards. Deployed on a private subnet behind the internal ALB, connects to ClickHouse for data queries. Accessible via VPN through the internal DNS record.

Requirements¶

Name	Version
terraform	>= 1.6.0
aws	~> 5.0

Providers¶

Name	Version
aws	~> 5.0

Modules¶

No modules.

Resources¶

Name	Type
aws_iam_instance_profile.grafana	resource
aws_iam_role.grafana	resource
aws_iam_role_policy.kms_for_ssm_session	resource
aws_iam_role_policy_attachment.grafana_ssm	resource
aws_instance.grafana	resource
aws_lb_listener_rule.grafana	resource
aws_lb_target_group.grafana	resource
aws_lb_target_group_attachment.grafana	resource
aws_route53_record.grafana	resource
aws_security_group.grafana	resource
aws_security_group_rule.clickhouse_from_grafana	resource
aws_security_group_rule.grafana_from_alb	resource
aws_ami.al2023	data source
aws_caller_identity.current	data source
aws_iam_policy_document.ec2_assume_role	data source
aws_route53_zone.selected	data source

Inputs¶

Name	Description	Type	Default	Required
alb_dns_name	DNS name of the internal ALB (for Route53 alias target)	`string`	n/a	yes
alb_https_listener_arn	ARN of the internal ALB HTTPS listener	`string`	n/a	yes
alb_security_group_id	Security group ID of the internal ALB (to allow its traffic into Grafana)	`string`	n/a	yes
alb_zone_id	Canonical hosted zone ID of the internal ALB (for Route53 alias)	`string`	n/a	yes
base_tags	Base tags to apply to all resources	`map(string)`	`{}`	no
clickhouse_security_group_id	Security group ID of ClickHouse (Grafana will be allowed to connect)	`string`	n/a	yes
environment	Environment name	`string`	n/a	yes
group	Resource group	`string`	n/a	yes
instance_type	EC2 instance type for Grafana	`string`	`"t3.small"`	no
name_prefix	Prefix for resource names	`string`	n/a	yes
private_subnet_id	Private subnet ID for the Grafana EC2 instance	`string`	n/a	yes
region	AWS region	`string`	n/a	yes
root_volume_size	Root volume size in GB	`number`	`64`	no
vpc_id	VPC ID where Grafana resources will be created	`string`	n/a	yes
zone_id	Route53 private hosted zone ID for the grafana DNS record	`string`	n/a	yes

Outputs¶

Name	Description
instance_id	EC2 instance ID of the Grafana server
security_group_id	ID of the Grafana security group