README.md

Central Digital Platform Infrastructure

This code base is responsible for provisioning the AWS infrastructure needed to support the CDP SIRSI application.

Note: In this documentation, ave is an alias for the aws-vault exec command, and aws-switch-to-* is an alias that configures the following:

• AWS_PROFILE
• TG_ENVIRONMENT
• AWS_ENV (optional)
• MFA_TOKEN handler (out of scope for this documentation)

You are welcome to use any profile manager or tool you are more comfortable with.

Table of Contents

• Bootstrap New Account
• Create New User
• Diagrams
  • CI/CD Build and Deployment Pipelines
  • ECS and RDS Database Integration
  • ECS and SQS Queue Integration
  • High-Level Overview (DNS, Networking, ECS, and Data Flow)
• Create New User
• Manage Secrets
  • Retrieve Diagnostic URI
  • Update Charity Commission Secrets
  • Update Companies House Secrets
  • Update FtsService URL
  • Update GOVUKNotify ApiKey
  • Update GOVUKNotify Support Admin Email
  • Update OneLogin Secrets
  • Update OneLogin Forward Logout Notification API Key
  • Update Pen Testing Configuration
  • Update Production Database Users
  • Update Slack Configuration
  • Update Terraform Operators
  • Update WAF Allowed IP Set
• Pin Application/Service Version
• Run Databases' Migrations