feat: Add support for user-group sub-module

Author: bryantbiggs

modules/README.md

@@ -0,0 +1,101 @@
+# AWS ElastiCache - User Group Terraform module
+
+Terraform module which creates AWS ElastiCache users & group resources.
+
+[![SWUbanner](https://raw.githubusercontent.com/vshymanskyy/StandWithUkraine/main/banner2-direct.svg)](https://github.com/vshymanskyy/StandWithUkraine/blob/main/docs/README.md)
+
+## Usage
+
+See [`examples`](https://github.com/clowdhaus/terraform-aws-elasticache/tree/main/examples) directory for working examples to reference:
+
+```hcl
+module "elasticache" {
+  source = "clowdhaus/elasticache/aws//modules/user-group"
+
+  user_group_id = "example"
+  users = {
+    Moe = {
+      access_string = "on ~* +@all"
+      passwords     = ["password123456789"]
+    }
+
+    Larry = {
+      access_string = "on ~* +@all"
+
+      authentication_mode = {
+        type = "iam"
+      }
+    }
+
+    Curly = {
+      access_string = "on ~* +@all"
+
+      authentication_mode = {
+        type      = "password"
+        passwords = ["password1", "password2"]
+      }
+    }
+  }
+
+  tags = {
+    Terraform   = "true"
+    Environment = "dev"
+  }
+}
+```
+
+## Examples
+
+Examples codified under the [`examples`](https://github.com/clowdhaus/terraform-aws-elasticache/tree/main/examples) are intended to give users references for how to use the module(s) as well as testing/validating changes to the source code of the module. If contributing to the project, please be sure to make any appropriate updates to the relevant examples to allow maintainers to test your changes and to keep the examples up to date for users. Thank you!
+
+- [Complete](https://github.com/clowdhaus/terraform-aws-elasticache/tree/main/examples/complete)
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Requirements
+
+| Name | Version |
+|------|---------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 5.23 |
+
+## Providers
+
+| Name | Version |
+|------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | >= 5.23 |
+
+## Modules
+
+No modules.
+
+## Resources
+
+| Name | Type |
+|------|------|
+| [aws_elasticache_user.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/elasticache_user) | resource |
+| [aws_elasticache_user_group.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/elasticache_user_group) | resource |
+| [aws_elasticache_user_group_association.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/elasticache_user_group_association) | resource |
+
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| <a name="input_create"></a> [create](#input\_create) | Determines whether resources will be created (affects all resources) | `bool` | `true` | no |
+| <a name="input_create_group"></a> [create\_group](#input\_create\_group) | Determines whether a user group will be created | `bool` | `true` | no |
+| <a name="input_engine"></a> [engine](#input\_engine) | The current supported value is `REDIS` | `string` | `"REDIS"` | no |
+| <a name="input_tags"></a> [tags](#input\_tags) | A map of tags to add to all resources | `map(string)` | `{}` | no |
+| <a name="input_user_group_id"></a> [user\_group\_id](#input\_user\_group\_id) | The ID of the user group | `string` | `""` | no |
+| <a name="input_users"></a> [users](#input\_users) | A map of users to create | `any` | `{}` | no |
+
+## Outputs
+
+| Name | Description |
+|------|-------------|
+| <a name="output_group_arn"></a> [group\_arn](#output\_group\_arn) | The ARN that identifies the user group |
+| <a name="output_group_id"></a> [group\_id](#output\_group\_id) | The user group identifier |
+| <a name="output_users"></a> [users](#output\_users) | A map of users created and their attributes |
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+
+## License
+
+Apache-2.0 Licensed. See [LICENSE](https://github.com/clowdhaus/terraform-aws-elasticache/blob/main/LICENSE).

modules/user-group/README.md

@@ -0,0 +1,53 @@
+locals {
+  tags = merge(var.tags, { terraform-aws-modules = "elasticache" })
+}
+
+################################################################################
+# Group
+################################################################################
+
+resource "aws_elasticache_user_group" "this" {
+  count = var.create && var.create_group ? 1 : 0
+
+  engine        = var.engine
+  user_group_id = var.user_group_id
+  tags          = local.tags
+
+  lifecycle {
+    ignore_changes = [user_ids]
+  }
+}
+
+################################################################################
+# User(s)
+################################################################################
+
+resource "aws_elasticache_user" "this" {
+  for_each = { for k, v in var.users : k => v if var.create }
+
+  access_string = each.value.access_string
+
+  dynamic "authentication_mode" {
+    for_each = lookup(each.value, "authentication_mode", []) > 0 ? [each.value.authentication_mode] : []
+
+    content {
+      passwords = try(authentication_mode.value.passwords, [])
+      type      = authentication_mode.value.type
+    }
+  }
+
+  engine               = each.value.engine
+  no_password_required = try(each.value.no_password_required, null)
+  passwords            = try(each.value.passwords, [])
+  user_id              = try(each.value.user_id, each.key)
+  user_name            = try(each.value.user_name, each.key)
+
+  tags = merge(local.tags, try(each.value.tags, {}))
+}
+
+resource "aws_elasticache_user_group_association" "this" {
+  for_each = { for k, v in var.users : k => v if var.create }
+
+  user_group_id = var.create && var.create_group ? aws_elasticache_user_group.this[0].user_group_id : each.value.user_group_id
+  user_id       = aws_elasticache_user.this[each.key].user_id
+}

modules/user-group/main.tf

@@ -0,0 +1,22 @@
+################################################################################
+# Group
+################################################################################
+
+output "group_arn" {
+  description = "The ARN that identifies the user group"
+  value       = try(aws_elasticache_user_group.this[0].arn, null)
+}
+
+output "group_id" {
+  description = "The user group identifier"
+  value       = try(aws_elasticache_user_group.this[0].id, null)
+}
+
+################################################################################
+# User(s)
+################################################################################
+
+output "users" {
+  description = "A map of users created and their attributes"
+  value       = aws_elasticache_user.this
+}

modules/user-group/outputs.tf

@@ -0,0 +1,43 @@
+variable "create" {
+  description = "Determines whether resources will be created (affects all resources)"
+  type        = bool
+  default     = true
+}
+
+variable "tags" {
+  description = "A map of tags to add to all resources"
+  type        = map(string)
+  default     = {}
+}
+
+################################################################################
+# Group
+################################################################################
+
+variable "create_group" {
+  description = "Determines whether a user group will be created"
+  type        = bool
+  default     = true
+}
+
+variable "engine" {
+  description = "The current supported value is `REDIS`"
+  type        = string
+  default     = "REDIS"
+}
+
+variable "user_group_id" {
+  description = "The ID of the user group"
+  type        = string
+  default     = ""
+}
+
+################################################################################
+# User(s)
+################################################################################
+
+variable "users" {
+  description = "A map of users to create"
+  type        = any
+  default     = {}
+}

modules/user-group/variables.tf

@@ -0,0 +1,10 @@
+terraform {
+  required_version = ">= 1.0"
+
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 5.23"
+    }
+  }
+}