Enables configurable EBS volume types

Allows users to specify different EBS volume types
for both the root and data volumes, providing flexibility
and cost optimization.

Adds a validation script to verify the Terraform configuration
and required variables.

Author: bogdan-ts

terraform/aws/main.tf

@@ -25,17 +25,17 @@ provider "aws" {
 data "aws_ami" "ubuntu" {
   most_recent = true
   owners      = ["099720109477"] # Canonical
-  
+
   filter {
     name   = "name"
     values = ["ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-*"]
   }
-  
+
   filter {
     name   = "virtualization-type"
     values = ["hvm"]
   }
-  
+
   filter {
     name   = "root-device-type"
     values = ["ebs"]
@@ -135,7 +135,7 @@ resource "aws_security_group" "main" {
 resource "aws_ebs_volume" "data" {
   availability_zone = aws_subnet.main.availability_zone
   size              = var.data_volume_size
-  type              = "gp3"
+  type              = var.data_volume_type
   encrypted         = true
 
   tags = {
@@ -155,7 +155,7 @@ resource "aws_instance" "main" {
 
   root_block_device {
     volume_size = 30
-    volume_type = "gp3"
+    volume_type = var.root_volume_type
     encrypted   = true
   }
 

terraform/aws/terraform.tfvars.example

@@ -22,6 +22,10 @@ instance_type = "t3.medium"
 # EBS volume size for data (GiB)
 data_volume_size = 50
 
+# Storage types
+# data_volume_type = "gp3"  # gp3 (SSD), st1 (HDD throughput optimized, min 125 GiB), sc1 (HDD cold, min 125 GiB)
+# root_volume_type = "gp3"  # gp3 (SSD), gp2 (older SSD)
+
 
 # SECURITY
 # -------------------------

terraform/aws/validate.sh

@@ -0,0 +1,63 @@
+#!/bin/bash
+set -e
+
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+NC='\033[0m'
+
+echo "Validating Terraform configuration..."
+echo
+
+# Check terraform
+if ! command -v terraform &> /dev/null; then
+    echo -e "${RED}ERROR: Terraform not installed${NC}"
+    exit 1
+fi
+echo -e "${GREEN}OK${NC} Terraform $(terraform version -json | grep -o '"version":"[^"]*' | cut -d'"' -f4)"
+
+# Check AWS CLI
+if command -v aws &> /dev/null && aws sts get-caller-identity &> /dev/null 2>&1; then
+    ACCOUNT=$(aws sts get-caller-identity --query Account --output text)
+    echo -e "${GREEN}OK${NC} AWS credentials (Account: $ACCOUNT)"
+else
+    echo -e "${YELLOW}WARN${NC} AWS credentials not configured"
+fi
+
+# Init
+terraform init -backend=false > /dev/null 2>&1 || { echo -e "${RED}ERROR: Terraform init failed${NC}"; exit 1; }
+echo -e "${GREEN}OK${NC} Terraform init"
+
+# Validate
+terraform validate > /dev/null 2>&1 || { echo -e "${RED}ERROR: Validation failed${NC}"; terraform validate; exit 1; }
+echo -e "${GREEN}OK${NC} Configuration valid"
+
+# Check terraform.tfvars
+if [ ! -f "terraform.tfvars" ]; then
+    echo -e "${RED}ERROR: terraform.tfvars not found${NC}"
+    echo "Run: cp terraform.tfvars.example terraform.tfvars"
+    exit 1
+fi
+
+# Check required variables
+grep -q "ssh_key_name.*=" terraform.tfvars && ! grep -q 'ssh_key_name.*=.*""' terraform.tfvars || \
+    { echo -e "${RED}ERROR: ssh_key_name not set in terraform.tfvars${NC}"; exit 1; }
+
+echo -e "${GREEN}OK${NC} Required variables configured"
+
+# Plan
+echo
+echo "Running terraform plan..."
+if terraform plan -out=tfplan > /tmp/tfplan.log 2>&1; then
+    RESOURCES=$(terraform show -json tfplan 2>/dev/null | grep -o '"to_create":[0-9]*' | cut -d: -f2)
+    echo -e "${GREEN}OK${NC} Plan successful (${RESOURCES} resources to create)"
+else
+    echo -e "${RED}ERROR: Plan failed${NC}"
+    cat /tmp/tfplan.log
+    exit 1
+fi
+
+echo
+echo "Validation complete. Ready to deploy."
+echo "Run: terraform apply tfplan"
+echo

terraform/aws/variables.tf

@@ -22,6 +22,18 @@ variable "data_volume_size" {
   default     = 50
 }
 
+variable "data_volume_type" {
+  description = "EBS volume type for data disk (gp3 for SSD, st1 for HDD throughput optimized, sc1 for HDD cold)"
+  type        = string
+  default     = "gp3"
+}
+
+variable "root_volume_type" {
+  description = "EBS volume type for root disk (gp3 for SSD, gp2 for older SSD)"
+  type        = string
+  default     = "gp3"
+}
+
 variable "ssh_key_name" {
   description = "Name of SSH key pair for EC2 access"
   type        = string