more cleanup

Author: kurowski

.devcontainer/onCreate.sh

@@ -16,6 +16,6 @@ echo "deb [signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://
 sudo apt update
 sudo apt-get install -y terraform
 
-# Install Azure CLI
+# Install AWS CLI
 # TODO move this into base image
-sudo apt-get install -y azure-cli
+sudo apt-get install -y awscli

terraform/.terraform.lock.hcl

@@ -40,28 +40,14 @@ export AWS_ACCESS_KEY_ID="your-access-key"
 export AWS_SECRET_ACCESS_KEY="your-secret-key"
 ```
 
-### 2. Set GitHub Token
-
-You need a GitHub Personal Access Token with `repo` and `workflow` scopes:
-
-```bash
-export TF_VAR_github_token="your-github-token"
-```
-
-Or create a `terraform.tfvars` file:
-
-```hcl
-github_token = "your-github-token"
-```
-
-### 3. Initialize Terraform
+### 2. Initialize Terraform
 
 ```bash
 cd terraform
 terraform init
 ```
 
-### 4. Review and Customize Variables
+### 3. Review and Customize Variables
 
 Edit `variables.tf` or create `terraform.tfvars` to customize:
 

terraform/README.md

@@ -16,10 +16,7 @@ resource "aws_elasticache_cluster" "redis" {
   security_group_ids   = [aws_security_group.redis.id]
   port                 = var.redis_port
 
-  # Enable auth token for security
-  auth_token                 = random_password.redis_auth_token.result
   transit_encryption_enabled = true
-  at_rest_encryption_enabled = true
 
   # Maintenance and backup
   maintenance_window       = "sun:05:00-sun:06:00"
@@ -36,7 +33,7 @@ resource "aws_elasticache_cluster" "redis" {
 
 # ElastiCache Parameter Group
 resource "aws_elasticache_parameter_group" "redis" {
-  name_prefix = "${var.name_prefix}-redis-"
+  name        = "${var.name_prefix}-redis"
   family      = "redis7"
   description = "Custom parameter group for ${var.name_prefix} Redis"
 

terraform/elasticache.tf

@@ -137,9 +137,3 @@ variable "github_repo" {
   type        = string
   default     = "drupal-example"
 }
-
-variable "github_token" {
-  description = "GitHub personal access token for pulling Docker images"
-  type        = string
-  sensitive   = true
-}

terraform/variables.tf

@@ -127,7 +127,7 @@ resource "aws_wafv2_web_acl_association" "alb" {
 
 # Configure WAF Logging to CloudWatch
 # Logs all traffic evaluated by the WAF (including blocked and allowed requests)
-resource "aws_wafv2_logging_configuration" "alb" {
+resource "aws_wafv2_web_acl_logging_configuration" "alb" {
   resource_arn            = aws_wafv2_web_acl.alb.arn
   log_destination_configs = [aws_cloudwatch_log_group.waf.arn]