Skip to content

Latest commit

 

History

History

aws-workspace-with-firewall

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
main.tf
main.tf
 
 
terraform.tfvars
terraform.tfvars
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

README.md

Provisioning AWS Databricks E2 with an AWS Firewall

This example is using the aws-workspace-with-firewall module.

This template provides an example of a simple deployment of AWS Databricks E2 workspace with an AWS Firewall.

Overall Architecture

alt text

How to use

  1. Reference this module using one of the different module source types
  2. Add a variables.tf with the same content in variables.tf
  3. Add a terraform.tfvars file and provide values to each defined variable
  4. Configure the following environment variables:
    • TF_VAR_databricks_account_client_id, set to the value of application ID of your Databricks account-level service principal with admin permission.
    • TF_VAR_databricks_account_client_secret, set to the value of the client secret for your Databricks account-level service principal.
    • TF_VAR_databricks_account_id, set to the value of the ID of your Databricks account. You can find this value in the corner of your Databricks account console.
  5. Add a output.tf file.
  6. (Optional) Configure your remote backend
  7. Run terraform init to initialize terraform and get provider ready.
  8. Run terraform apply to create the resources.

Requirements

Name Version
aws ~> 5.0
databricks >=1.13.0

Providers

Name Version
random n/a

Modules

Name Source Version
aws-workspace-with-firewall github.com/databricks/terraform-databricks-examples/modules/aws-workspace-with-firewall n/a

Resources

Name Type
random_string.naming resource

Inputs

Name Description Type Default Required
cidr_block IP range for AWS VPC string "10.4.0.0/16" no
databricks_account_client_id Application ID of account-level service principal string n/a yes
databricks_account_client_secret Client secret of account-level service principal string n/a yes
databricks_account_id Databricks Account ID string n/a yes
db_control_plane IP Range for AWS Databricks control plane string "18.134.65.240/28" no
db_rds Hostname of AWS RDS instance for built-in Hive Metastore string "mdio2468d9025m.c6fvhwk6cqca.eu-west-2.rds.amazonaws.com" no
db_tunnel Hostname of Databricks SCC Relay string "tunnel.eu-west-2.cloud.databricks.com" no
db_web_app Hostname of Databricks web application string "london.cloud.databricks.com" no
prefix Prefix for use in the generated names string "demo" no
region AWS region to deploy to string "eu-west-2" no
tags Optional tags to add to created resources map(string) {} no
whitelisted_urls List of the domains to allow traffic to list(string) 
[
  ".pypi.org",
  ".pythonhosted.org",
  ".cran.r-project.org"
]
 no

Outputs

No outputs.