fix: Fixed example of cross-region replica where KMS key was missing (#428)

magreenbaum · web-flow · commit 88418a71bb63 · 2022-08-15T14:27:35.000+02:00
diff --git a/examples/cross-region-replica-postgres/README.md b/examples/cross-region-replica-postgres/README.md
@@ -24,12 +24,15 @@ Note that this example may create resources which cost money. Run `terraform des
 
 ## Providers
 
-No providers.
+| Name | Version |
+|------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | >= 4.6 |
 
 ## Modules
 
 | Name | Source | Version |
 |------|--------|---------|
+| <a name="module_kms"></a> [kms](#module\_kms) | terraform-aws-modules/kms/aws | ~> 1.0 |
 | <a name="module_master"></a> [master](#module\_master) | ../../ | n/a |
 | <a name="module_replica"></a> [replica](#module\_replica) | ../../ | n/a |
 | <a name="module_security_group_region1"></a> [security\_group\_region1](#module\_security\_group\_region1) | terraform-aws-modules/security-group/aws | ~> 4.0 |
@@ -39,7 +42,9 @@ No providers.
 
 ## Resources
 
-No resources.
+| Name | Type |
+|------|------|
+| [aws_caller_identity.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity) | data source |
 
 ## Inputs
 
diff --git a/examples/cross-region-replica-postgres/main.tf b/examples/cross-region-replica-postgres/main.tf
@@ -7,10 +7,13 @@ provider "aws" {
   region = local.region2
 }
 
+data "aws_caller_identity" "current" {}
+
 locals {
-  name    = "replica-postgresql"
-  region1 = "eu-west-1"
-  region2 = "eu-central-1"
+  name             = "replica-postgresql"
+  region1          = "eu-west-1"
+  region2          = "eu-central-1"
+  current_identity = data.aws_caller_identity.current.id
   tags = {
     Owner       = "user"
     Environment = "dev"
@@ -158,6 +161,23 @@ module "master" {
 ################################################################################
 # Replica DB
 ################################################################################
+module "kms" {
+  source      = "terraform-aws-modules/kms/aws"
+  version     = "~> 1.0"
+  description = "KMS key for cross region replica DB"
+
+  # Aliases
+  aliases                 = [local.name]
+  aliases_use_name_prefix = true
+
+  key_owners = [local.current_identity]
+
+  tags = local.tags
+
+  providers = {
+    aws = aws.region2
+  }
+}
 
 module "replica" {
   source = "../../"
@@ -177,6 +197,7 @@ module "replica" {
   family               = local.family
   major_engine_version = local.major_engine_version
   instance_class       = local.instance_class
+  kms_key_id           = module.kms.key_arn
 
   allocated_storage     = local.allocated_storage
   max_allocated_storage = local.max_allocated_storage
