Domain Protect was initially published as a stand-alone Terraform repository which is no longer being maintained.
Domain Protect has now been published as a public Terraform module from the repo terraform-aws-domain-protect.
Users of Domain Protect should migrate to use the Terraform module which has the benefits of increased flexibility and straightforward updates.
Steps to migrate from the stand-alone repository to the module are detailed below.
This is the simplest option, however you will lose your vulnerability and IP address databases. There's also likely to be some downtime during the switchover.
- Destroy the old evironment using
terraform destroy - Create a new environment using the Terraform module
Phased option preserving databases and avoiding downtime:
-
Upgrade Domain Protect using your existing deployment methodology from the original Domain Protect repository to version
0.5.1and your current variables -
This is pinned to use version
0.5.1of the Terraform module -
Create a new repository for your deployment(s), calling the Terraform module directly, which should result in no changes other than the usual Lambda rebuilds
-
See the examples folder in this repository for example Terraform
-
Update the Terraform module version to the latest version, this will require some adjustment of Terraform variables:
slack_channels_devno longer used - simply pass in different variables for each environment- set
takeoverastruein prod andfalsein development environment
-
Ensure no changes with a Terraform plan for each environment, other than the usual Lambda rebuilds
-
After you've finished, destroy or archive your old repository