Support budget by tag

Author: Steven Nemetz

README.md

@@ -2,7 +2,9 @@
 
 Terraform module to setup AWS budgets and notifications
 
-This is fairly specific for now. It can create budgets for multiple linked accounts. Each with it's own limit.
+For now it can manage 2 types of budgets:
+ - Account budgets for a single account or multiple linked accounts. Each with it's own limit.
+ - Budget by tag
 Notification is only supported for a single email address
 
 NOTE: Setting up notification and subscribers is not currently supported in Terraform

examples/cost-tag-monthly/README.md

@@ -0,0 +1 @@
+# Example: Monthly budget by tag

examples/cost-tag-monthly/main.tf

@@ -0,0 +1,7 @@
+module "budget-1" {
+  source             = "../../"
+  emails             = ["[email protected]", "[email protected]"]
+  budget_name        = "service-1"
+  budget_name_prefix = "Testing-"
+  tag_value          = "service-1"
+}

examples/cost-tag-monthly/providers.tf

@@ -0,0 +1,10 @@
+provider "aws" {
+  region = "${var.region}"
+
+  # Make it faster by skipping something
+  skip_get_ec2_platforms      = true
+  skip_metadata_api_check     = true
+  skip_region_validation      = true
+  skip_credentials_validation = true
+  skip_requesting_account_id  = true
+}

examples/cost-tag-monthly/variables.tf

@@ -0,0 +1,3 @@
+variable "region" {
+  default = "us-west-2"
+}

examples/cost-tag-quarterly/README.md

@@ -0,0 +1 @@
+# Example: Quarterly budget by tag

examples/cost-tag-quarterly/main.tf

@@ -0,0 +1,8 @@
+module "budget-1" {
+  source             = "../../"
+  emails             = ["[email protected]", "[email protected]"]
+  budget_name        = "service-1"
+  budget_name_prefix = "Testing-"
+  tag_value          = "service-1"
+  time_unit          = "QUARTERLY"
+}

examples/cost-tag-quarterly/providers.tf

@@ -0,0 +1,10 @@
+provider "aws" {
+  region = "${var.region}"
+
+  # Make it faster by skipping something
+  skip_get_ec2_platforms      = true
+  skip_metadata_api_check     = true
+  skip_region_validation      = true
+  skip_credentials_validation = true
+  skip_requesting_account_id  = true
+}

examples/cost-tag-quarterly/variables.tf

@@ -0,0 +1,3 @@
+variable "region" {
+  default = "us-west-2"
+}

main.tf

@@ -5,34 +5,70 @@ data "aws_caller_identity" "current" {}
 
 # https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_budgets_CostTypes.html
 #
-/*
+/**/
 # This is future work for single budget that can set most things
 locals {
   cost_filters = {
     AZ = {
       AZ = ""
     }
+
     LinkedAccount = {
-      LinkedAccount = "${join(",", var.account_ids)}"
+      #LinkedAccount = "${join(",", var.account_ids)}"
     }
+
     Operation = {
       Operation = ""
     }
+
     PurchaseType = {
       PurchaseType = ""
     }
+
     Service = {
       Service = ""
     }
+
     TagKeyValue = {
-      TagKeyValue = "Stack$$${var.service}"
+      TagKeyValue = "user:${var.tag_key}$$${var.tag_value}"
     }
+
     UsageType = {
       UsageType = ""
     }
   }
 }
+
 /**/
+resource "aws_budgets_budget" "budget" {
+  count        = "${length(var.budgets) == 0 ? 1 : 0}"
+  account_id   = "${data.aws_caller_identity.current.account_id}"
+  name         = "${var.budget_name_prefix}${var.budget_name}-${title(lower(var.time_unit))}"
+  budget_type  = "${var.budget_type}"
+  limit_unit   = "${var.limit_unit}"
+  time_unit    = "${var.time_unit}"
+  cost_filters = "${local.cost_filters[var.cost_filter_type]}"
+
+  limit_amount = "${var.time_unit == "ANNUALLY" ?
+    var.limit_amount * 12 :
+    var.time_unit == "QUARTERLY" ?
+      var.limit_amount * 3 :
+      var.limit_amount
+  }"
+
+  time_period_start = "${var.time_unit == "ANNUALLY" ?
+    "${substr(timestamp(), 0, 5)}01-01_00:00" :
+    var.time_unit == "QUARTERLY" ?
+      "${substr(timestamp(), 0, 5)}${format("%02d", (substr(timestamp(), 5, 2) - 1) / 3 * 3 + 1)}-01_00:00" :
+      "${substr(timestamp(), 0, 8)}01_00:00"
+  }"
+
+  lifecycle {
+    ignore_changes = ["time_period_start"]
+  }
+}
+
+# Multiple linked account budgets
 resource "aws_budgets_budget" "budgets" {
   count       = "${length(var.budgets)}"
   account_id  = "${data.aws_caller_identity.current.account_id}"

notifications.tf

@@ -7,6 +7,15 @@
 # https://docs.aws.amazon.com/sns/latest/api/API_Subscribe.html#API_Subscribe_RequestParameters
 
 locals {
+  # Prefix for single budget
+  notification_cmd_prefix_single = <<EOF
+aws budgets create-notification \
+--account-id ${data.aws_caller_identity.current.account_id} \
+--budget-name ${var.budget_name_prefix}${var.budget_name}-${title(lower(var.time_unit))} \
+--subscribers ${join(" ", formatlist("SubscriptionType=EMAIL,Address=%s", var.emails))} \
+--notification \
+EOF
+
   # Prefix for multiple budgets. So only contain stuff that is common to all budgets in var.budgets
   # Could move subscribers here as long as only supporting one
   notification_cmd_prefix = <<EOF
@@ -15,8 +24,62 @@ aws budgets create-notification \
 EOF
 }
 
+//
+// Notifications for single budget
+//
+# When forecasted bill exceeds budget by 10%
+resource "null_resource" "budget_forecast_110" {
+  count = "${length(var.budgets) == 0 ? 1 : 0}"
+
+  triggers {
+    budget_id = "${aws_budgets_budget.budget.id}"
+    prefix    = "${local.notification_cmd_prefix_single}"
+  }
+
+  provisioner "local-exec" {
+    command = <<CMD
+${local.notification_cmd_prefix_single} NotificationType=FORECASTED,ComparisonOperator=GREATER_THAN,Threshold=110,ThresholdType=PERCENTAGE
+CMD
+  }
+}
+
+# When actual bill exceeds 90% budget
+resource "null_resource" "budget_actual_90" {
+  count = "${length(var.budgets) == 0 ? 1 : 0}"
+
+  triggers {
+    budget_id = "${aws_budgets_budget.budget.id}"
+    prefix    = "${local.notification_cmd_prefix_single}"
+  }
+
+  provisioner "local-exec" {
+    command = <<CMD
+${local.notification_cmd_prefix_single} NotificationType=ACTUAL,ComparisonOperator=GREATER_THAN,Threshold=90,ThresholdType=PERCENTAGE
+CMD
+  }
+}
+
+# When actual bill exceeds 80% budget
+resource "null_resource" "budget_actual_80" {
+  count = "${length(var.budgets) == 0 ? 1 : 0}"
+
+  triggers {
+    budget_id = "${aws_budgets_budget.budget.id}"
+    prefix    = "${local.notification_cmd_prefix_single}"
+  }
+
+  provisioner "local-exec" {
+    command = <<CMD
+${local.notification_cmd_prefix_single} NotificationType=ACTUAL,ComparisonOperator=GREATER_THAN,Threshold=80,ThresholdType=PERCENTAGE
+CMD
+  }
+}
+
+//
+// Notifications for multiple budgets
+//
 # When forecasted bill exceeds budget by 10%
-resource "null_resource" "budget_forecast_notification" {
+resource "null_resource" "budgets_forecast_110" {
   count = "${length(var.budgets)}"
 
   triggers {
@@ -34,7 +97,7 @@ CMD
 }
 
 # When actual bill exceeds 90% budget
-resource "null_resource" "budget_actual_90" {
+resource "null_resource" "budgets_actual_90" {
   count = "${length(var.budgets)}"
 
   triggers {
@@ -52,7 +115,7 @@ CMD
 }
 
 # When actual bill exceeds 80% budget
-resource "null_resource" "budget_actual_80" {
+resource "null_resource" "budgets_actual_80" {
   count = "${length(var.budgets)}"
 
   triggers {

variables.tf

@@ -1,14 +1,14 @@
-variable "service" {
-  description = "Not used yet"
-  default     = "cmp-service"
-}
-
 // Specific to module
 variable "budget_name_prefix" {
   description = "Text to prefix budget names with"
   default     = ""
 }
 
+variable "budget_name" {
+  description = "Budget name (when managing a single budget)"
+  default     = ""
+}
+
 variable "budget_type" {
   description = "Type of budget"
   default     = "COST"
@@ -20,6 +20,11 @@ variable "budgets" {
   default     = []
 }
 
+variable "cost_filter_type" {
+  description = "Cost filter type (when managing a single budget)"
+  default     = "TagKeyValue"
+}
+
 variable "limit_amount" {
   description = "Budget limit amount"
   default     = "100"
@@ -30,17 +35,27 @@ variable "limit_unit" {
   default     = "USD"
 }
 
+variable "tag_key" {
+  description = "Tag key for cost filter by tag (TagKeyValue)"
+  default     = "Stack"
+}
+
+variable "tag_value" {
+  description = "Tag value for cost filter by tag (TagKeyValue)"
+  default     = ""
+}
+
 variable "time_unit" {
   description = "Budget time period"
   default     = "MONTHLY"
 }
 
-variable "cost_filter_type" {
-  description = "Not used yet"
-  default     = "TagKeyValue"
-}
-
 variable "email" {
-  description = "Email address to send budget alerts to"
+  description = "Email address to send budget alerts to. Used by account budgets."
   default     = ""
 }
+
+variable "emails" {
+  description = "List of email addresses to send budget alerts to. Maximum of 10. Used by single budgets"
+  default     = []
+}