junte/Model
1
0
Fork 0
mirror of https://github.com/Hestia-Homes/Model.git synced 2026-06-08 11:17:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Updated documentation

Browse source
This commit is contained in:
Khalim Conn-Kowlessar 2023-07-05 18:27:51 +01:00
parent 380b7771db
commit 3036512f85
1 changed files with 17 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
infrastructure/terraform/README.md
View file

@ -67,3 +67,20 @@ terraform workspace select prod
```
Remember to update your variables file accordingly when planning and applying changes (`-var-file=prod.tfvars` for production, for example).
## Future TODOS
- At the moment, the database is publicly accessible. We could add an inbound rule to a security group to restrict access to the ip of the vercel application in prod which would look something like this:
```
resource "aws_security_group_rule" "allow_specific_ip" {
type = "ingress"
from_port = 5432
to_port = 5432
protocol = "tcp"
cidr_blocks = ["your.vercel.app.ip.address/32"]
security_group_id = aws_db_instance.default.vpc_security_group_ids[0]
}
```
- Set up prod!