Architecture
flowchart LR
USER["Client"] --> ALB["Internet-facing ALB<br/>(ingress: locked CIDR)"]
subgraph VPC
ALB --> TG["Target group · /health/live"]
TG --> TASK["Fargate task (private subnet)<br/>Open Liberty · Java 21"]
end
ECR["ECR · KMS · immutable · scanned"] --> TASKDeployment (GitLab CI)
flowchart LR
SCAN["security scan"] --> BUILD["multi-stage docker build → ECR"]
BUILD --> PLAN["terraform plan"] --> GATE{{"manual approval"}}
GATE --> APPLY["terraform apply"]Components
Modular Terraform: networking · ecr · alb · ecs. App: Open Liberty kernel-slim runtime with MicroProfile Health.
Related
Compiled from
wiki/projects/Claude-AWS-Project/HLD.md · git is the source of truth