Glacier Vault
π¦ Overviewβ
This Terraform module provisions an Amazon S3 Glacier Vault for long-term, low-cost archival storage.
Itβs ideal for backup archives, compliance storage, and datasets that do not require frequent access but must remain durably stored over time.
β Key Featuresβ
- Creates a secure S3 Glacier Vault for cold data storage
- Supports tagging by environment, name, and purpose
- Compliant with backup and archival retention policies
- Optimized for durability and rare-access workloads
πΌ Use Casesβ
- Regulatory compliance data retention (HIPAA, SEC, IRS, etc.)
- Archived application or database backups
- Long-term media storage, legal hold, or audit logs
- Secure, cost-effective offloading of cold datasets
π₯ Input Variablesβ
| Name | Type | Description |
|---|---|---|
| region | string | AWS region to create the Glacier vault |
| vault_name | string | Name to assign to the Glacier vault |
| environment | string | Tag to specify the deployment environment (e.g., dev, staging, prod) |
π€ Outputsβ
| Name | Description |
|---|---|
| vault_name | The name of the Glacier vault |
| vault_arn | The ARN of the created Glacier vault |
| region | The AWS region where the vault was created |
π Deployment Readinessβ
- β Compatible with Terraform 1.0+
- β Tested with AWS provider 5.x
- π§ͺ Requires IAM permissions for Glacier and tagging APIs
π οΈ Example Usageβ
module "glacier_vault" {
source = "git::ssh://git@github.com/archiphire/aws-level-1-modules.git//storage/glacier-vault?ref=v1.0.0"
region = "us-east-1"
vault_name = "archiphire-archive"
environment = "prod"
}
terraform init
terraform plan
terraform apply
or
tofu init
tofu plan
tofu apply
π§Ή Cleanup Optionsβ
Terraform Destroy (for test environments):
terraform destroy
or
tofu destroy
Manual Deletion (CLI):
aws glacier delete-vault --account-id - --vault-name archiphire-archive
β οΈ Glacier vaults must be empty before deletion. Use the AWS CLI or SDK to remove archives if needed.
π‘οΈ Notesβ
This Level 1 module is best suited for standalone cold storage use. For lifecycle automation or retrieval orchestration, compose it with:
s3-lifecycle-to-glacier glacier-job-retrieval (Level 2 concept)
π Deployment Package Noticeβ
This module is part of the Level 1 AWS License Tier. To access the full deployment package and source code, subscribe to Archiphire.