Skip to content

Setting up AWS

As described in the tenenacy model, we advice to setup your MACH environment by creating one service AWS account containing shared resources and create an AWS account per stack.

This way, all resources are strictly seperated from eachother.

These account contain at least the following resources:

Service account

  1. Terraform state backend
  2. Component registry
  3. Route53 zone to route all other accounts from

Site-specific account

  1. Terraform state backend
  2. The Route53 hosted zones needed for the endpoints
  3. deploy IAM role for MACH to manage your resources

Service account setup

Todo

Describe setup using Terraform

Site-specific account setup

Todo

Describe setup using Terraform

Example

See the examples directory for an example of a Terraform setup

Manual setup

See instructions on how to setup AWS manually.