diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index e53f4023..727e0b2f 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -27,3 +27,6 @@ jobs:
          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
          AWS_REGION: ${{ secrets.AWS_REGION }}
+    - name: terraform init
+      run: cd devops && terraform init
+    
diff --git a/devops/alb.tf b/devops/alb.tf
new file mode 100644
index 00000000..c7819700
--- /dev/null
+++ b/devops/alb.tf
@@ -0,0 +1,36 @@
+resource "aws_alb" "main" {
+  name            = "jmsth-load-balancer"
+  subnets         = aws_subnet.public.*.id
+  security_groups = [aws_security_group.lb.id]
+}
+
+resource "aws_alb_target_group" "app" {
+  name        = "jmsth-target-group"
+  port        = 80
+  protocol    = "HTTP"
+  vpc_id      = aws_vpc.main.id
+  target_type = "ip"
+
+  health_check {
+    healthy_threshold   = "3"
+    interval            = "30"
+    protocol            = "HTTP"
+    matcher             = "200"
+    timeout             = "3"
+    path                = var.health_check_path
+    unhealthy_threshold = "2"
+  }
+}
+
+# Redirect all traffic from the ALB to the target group
+resource "aws_alb_listener" "front_end" {
+  load_balancer_arn = aws_alb.main.id
+  port              = var.app_port
+  protocol          = "HTTP"
+
+  default_action {
+    target_group_arn = aws_alb_target_group.app.id
+    type             = "forward"
+  }
+}
+
diff --git a/devops/auto_scaling.tf b/devops/auto_scaling.tf
new file mode 100644
index 00000000..3a4fd81f
--- /dev/null
+++ b/devops/auto_scaling.tf
@@ -0,0 +1,87 @@
+resource "aws_appautoscaling_target" "target" {
+  service_namespace  = "ecs"
+  resource_id        = "service/${aws_ecs_cluster.main.name}/${aws_ecs_service.main.name}"
+  scalable_dimension = "ecs:service:DesiredCount"
+  min_capacity       = 2
+  max_capacity       = 4
+}
+
+# Automatically scale capacity up by one
+resource "aws_appautoscaling_policy" "up" {
+  name               = "cb_scale_up"
+  service_namespace  = "ecs"
+  resource_id        = "service/${aws_ecs_cluster.main.name}/${aws_ecs_service.main.name}"
+  scalable_dimension = "ecs:service:DesiredCount"
+
+  step_scaling_policy_configuration {
+    adjustment_type         = "ChangeInCapacity"
+    cooldown                = 60
+    metric_aggregation_type = "Maximum"
+
+    step_adjustment {
+      metric_interval_lower_bound = 0
+      scaling_adjustment          = 1
+    }
+  }
+
+  depends_on = [aws_appautoscaling_target.target]
+}
+
+# Automatically scale capacity down by one
+resource "aws_appautoscaling_policy" "down" {
+  name               = "cb_scale_down"
+  service_namespace  = "ecs"
+  resource_id        = "service/${aws_ecs_cluster.main.name}/${aws_ecs_service.main.name}"
+  scalable_dimension = "ecs:service:DesiredCount"
+
+  step_scaling_policy_configuration {
+    adjustment_type         = "ChangeInCapacity"
+    cooldown                = 60
+    metric_aggregation_type = "Maximum"
+
+    step_adjustment {
+      metric_interval_upper_bound = 0
+      scaling_adjustment          = -1
+    }
+  }
+
+  depends_on = [aws_appautoscaling_target.target]
+}
+
+# CloudWatch alarm that triggers the autoscaling up policy
+resource "aws_cloudwatch_metric_alarm" "service_cpu_high" {
+  alarm_name          = "cb_cpu_utilization_high"
+  comparison_operator = "GreaterThanOrEqualToThreshold"
+  evaluation_periods  = "2"
+  metric_name         = "CPUUtilization"
+  namespace           = "AWS/ECS"
+  period              = "60"
+  statistic           = "Average"
+  threshold           = "85"
+
+  dimensions = {
+    ClusterName = aws_ecs_cluster.main.name
+    ServiceName = aws_ecs_service.main.name
+  }
+
+  alarm_actions = [aws_appautoscaling_policy.up.arn]
+}
+
+# CloudWatch alarm that triggers the autoscaling down policy
+resource "aws_cloudwatch_metric_alarm" "service_cpu_low" {
+  alarm_name          = "cb_cpu_utilization_low"
+  comparison_operator = "LessThanOrEqualToThreshold"
+  evaluation_periods  = "2"
+  metric_name         = "CPUUtilization"
+  namespace           = "AWS/ECS"
+  period              = "60"
+  statistic           = "Average"
+  threshold           = "10"
+
+  dimensions = {
+    ClusterName = aws_ecs_cluster.main.name
+    ServiceName = aws_ecs_service.main.name
+  }
+
+  alarm_actions = [aws_appautoscaling_policy.down.arn]
+}
diff --git a/devops/backend.tf b/devops/backend.tf
new file mode 100644
index 00000000..e660ae0d
--- /dev/null
+++ b/devops/backend.tf
@@ -0,0 +1,11 @@
+
+#terraform {
+#  backend "s3" {
+#    bucket = "jms-terraform-backend"
+#    key    = "jmsth_jenkins.tfstate"
+#    region = "ap-south-1"
+#    encrypt = true
+#    dynamodb_table = "terraform-state-lock-dynamo"
+#    }
+#  }
+
diff --git a/devops/ecs.tf b/devops/ecs.tf
new file mode 100644
index 00000000..d5874115
--- /dev/null
+++ b/devops/ecs.tf
@@ -0,0 +1,50 @@
+resource "aws_ecs_cluster" "main" {
+  name = "jms-cluster"
+}
+data "aws_ecr_repository" "springapp" {
+  name = "spring"
+}
+data "template_file" "cb_app" {
+  template = file("./templates/ecs/cb_app.json.tpl")
+
+  vars = {
+    app_image      = data.aws_ecr_repository.springapp.repository_url
+    app_port       = var.app_port
+    fargate_cpu    = var.fargate_cpu
+    fargate_memory = var.fargate_memory
+    aws_region     = var.aws_region
+    tag            = var.tag
+  }
+}
+
+resource "aws_ecs_task_definition" "app" {
+  family                   = "jms-app-task"
+  execution_role_arn       = aws_iam_role.ecs_task_execution_role.arn
+  network_mode             = "awsvpc"
+  requires_compatibilities = ["FARGATE"]
+  cpu                      = var.fargate_cpu
+  memory                   = var.fargate_memory
+  container_definitions    = data.template_file.cb_app.rendered
+}
+
+resource "aws_ecs_service" "main" {
+  name            = "jms-service1"
+  cluster         = aws_ecs_cluster.main.id
+  task_definition = aws_ecs_task_definition.app.arn
+  desired_count   = var.app_count
+  launch_type     = "FARGATE"
+
+  network_configuration {
+    security_groups  = [aws_security_group.ecs_tasks.id]
+    subnets          = aws_subnet.private.*.id
+    assign_public_ip = true
+  }
+
+  load_balancer {
+    target_group_arn = aws_alb_target_group.app.id
+    container_name   = "jms-app"
+    container_port   = var.app_port
+  }
+
+  depends_on = [aws_alb_listener.front_end, aws_iam_role_policy_attachment.ecs_task_execution_role]
+}
diff --git a/devops/graph.dot b/devops/graph.dot
new file mode 100644
index 00000000..977cdbbd
Binary files /dev/null and b/devops/graph.dot differ
diff --git a/devops/graph1.svg b/devops/graph1.svg
new file mode 100644
index 00000000..9ee474c0
--- /dev/null
+++ b/devops/graph1.svg
@@ -0,0 +1,748 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
+ "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<!-- Generated by graphviz version 2.48.0 (20210717.1556)
+ -->
+<!-- Pages: 1 -->
+<svg width="2404pt" height="836pt"
+ viewBox="0.00 0.00 2403.50 836.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
+<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 832)">
+<polygon fill="white" stroke="transparent" points="-4,4 -4,-832 2399.5,-832 2399.5,4 -4,4"/>
+<!-- [root] aws_alb.main (expand) -->
+<g id="node1" class="node">
+<title>[root] aws_alb.main (expand)</title>
+<polygon fill="none" stroke="black" points="667.5,-324 575.5,-324 575.5,-288 667.5,-288 667.5,-324"/>
+<text text-anchor="middle" x="621.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">aws_alb.main</text>
+</g>
+<!-- [root] aws_security_group.lb (expand) -->
+<g id="node23" class="node">
+<title>[root] aws_security_group.lb (expand)</title>
+<polygon fill="none" stroke="black" points="1059.5,-252 915.5,-252 915.5,-216 1059.5,-216 1059.5,-252"/>
+<text text-anchor="middle" x="987.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">aws_security_group.lb</text>
+</g>
+<!-- [root] aws_alb.main (expand)&#45;&gt;[root] aws_security_group.lb (expand) -->
+<g id="edge1" class="edge">
+<title>[root] aws_alb.main (expand)&#45;&gt;[root] aws_security_group.lb (expand)</title>
+<path fill="none" stroke="black" d="M667.86,-294.48C677.95,-292.27 688.57,-290.01 698.5,-288 767.96,-273.97 847.13,-259.56 905.02,-249.31"/>
+<polygon fill="black" stroke="black" points="905.97,-252.7 915.21,-247.51 904.75,-245.81 905.97,-252.7"/>
+</g>
+<!-- [root] aws_subnet.public (expand) -->
+<g id="node25" class="node">
+<title>[root] aws_subnet.public (expand)</title>
+<polygon fill="none" stroke="black" points="522,-252 401,-252 401,-216 522,-216 522,-252"/>
+<text text-anchor="middle" x="461.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">aws_subnet.public</text>
+</g>
+<!-- [root] aws_alb.main (expand)&#45;&gt;[root] aws_subnet.public (expand) -->
+<g id="edge2" class="edge">
+<title>[root] aws_alb.main (expand)&#45;&gt;[root] aws_subnet.public (expand)</title>
+<path fill="none" stroke="black" d="M582.36,-287.88C560.49,-278.31 533.04,-266.3 509.84,-256.15"/>
+<polygon fill="black" stroke="black" points="511.08,-252.87 500.51,-252.07 508.27,-259.28 511.08,-252.87"/>
+</g>
+<!-- [root] aws_alb_listener.front_end (expand) -->
+<g id="node2" class="node">
+<title>[root] aws_alb_listener.front_end (expand)</title>
+<polygon fill="none" stroke="black" points="874,-396 707,-396 707,-360 874,-360 874,-396"/>
+<text text-anchor="middle" x="790.5" y="-374.3" font-family="Times New Roman,serif" font-size="14.00">aws_alb_listener.front_end</text>
+</g>
+<!-- [root] aws_alb_listener.front_end (expand)&#45;&gt;[root] aws_alb.main (expand) -->
+<g id="edge3" class="edge">
+<title>[root] aws_alb_listener.front_end (expand)&#45;&gt;[root] aws_alb.main (expand)</title>
+<path fill="none" stroke="black" d="M749.16,-359.88C725.95,-350.26 696.81,-338.19 672.23,-328.01"/>
+<polygon fill="black" stroke="black" points="673.29,-324.66 662.71,-324.07 670.61,-331.13 673.29,-324.66"/>
+</g>
+<!-- [root] aws_alb_target_group.app (expand) -->
+<g id="node3" class="node">
+<title>[root] aws_alb_target_group.app (expand)</title>
+<polygon fill="none" stroke="black" points="873.5,-324 707.5,-324 707.5,-288 873.5,-288 873.5,-324"/>
+<text text-anchor="middle" x="790.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">aws_alb_target_group.app</text>
+</g>
+<!-- [root] aws_alb_listener.front_end (expand)&#45;&gt;[root] aws_alb_target_group.app (expand) -->
+<g id="edge4" class="edge">
+<title>[root] aws_alb_listener.front_end (expand)&#45;&gt;[root] aws_alb_target_group.app (expand)</title>
+<path fill="none" stroke="black" d="M790.5,-359.7C790.5,-351.98 790.5,-342.71 790.5,-334.11"/>
+<polygon fill="black" stroke="black" points="794,-334.1 790.5,-324.1 787,-334.1 794,-334.1"/>
+</g>
+<!-- [root] aws_vpc.main (expand) -->
+<g id="node26" class="node">
+<title>[root] aws_vpc.main (expand)</title>
+<polygon fill="none" stroke="black" points="687,-180 590,-180 590,-144 687,-144 687,-180"/>
+<text text-anchor="middle" x="638.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">aws_vpc.main</text>
+</g>
+<!-- [root] aws_alb_target_group.app (expand)&#45;&gt;[root] aws_vpc.main (expand) -->
+<g id="edge5" class="edge">
+<title>[root] aws_alb_target_group.app (expand)&#45;&gt;[root] aws_vpc.main (expand)</title>
+<path fill="none" stroke="black" d="M830.68,-287.77C845.33,-279.28 860.3,-267.48 868.5,-252 875.99,-237.86 878.59,-228.42 868.5,-216 821.18,-157.75 775.93,-195.75 696.96,-179.79"/>
+<polygon fill="black" stroke="black" points="697.68,-176.36 687.16,-177.56 696.14,-183.19 697.68,-176.36"/>
+</g>
+<!-- [root] var.health_check_path -->
+<g id="node42" class="node">
+<title>[root] var.health_check_path</title>
+<polygon fill="none" stroke="black" points="853.5,-252 717.5,-252 717.5,-216 859.5,-216 859.5,-246 853.5,-252"/>
+<polyline fill="none" stroke="black" points="853.5,-252 853.5,-246 "/>
+<polyline fill="none" stroke="black" points="859.5,-246 853.5,-246 "/>
+<text text-anchor="middle" x="788.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">var.health_check_path</text>
+</g>
+<!-- [root] aws_alb_target_group.app (expand)&#45;&gt;[root] var.health_check_path -->
+<g id="edge6" class="edge">
+<title>[root] aws_alb_target_group.app (expand)&#45;&gt;[root] var.health_check_path</title>
+<path fill="none" stroke="black" d="M790.01,-287.7C789.79,-279.98 789.52,-270.71 789.27,-262.11"/>
+<polygon fill="black" stroke="black" points="792.77,-262 788.99,-252.1 785.78,-262.2 792.77,-262"/>
+</g>
+<!-- [root] aws_appautoscaling_policy.down (expand) -->
+<g id="node4" class="node">
+<title>[root] aws_appautoscaling_policy.down (expand)</title>
+<polygon fill="none" stroke="black" points="882.5,-612 676.5,-612 676.5,-576 882.5,-576 882.5,-612"/>
+<text text-anchor="middle" x="779.5" y="-590.3" font-family="Times New Roman,serif" font-size="14.00">aws_appautoscaling_policy.down</text>
+</g>
+<!-- [root] aws_appautoscaling_target.target (expand) -->
+<g id="node6" class="node">
+<title>[root] aws_appautoscaling_target.target (expand)</title>
+<polygon fill="none" stroke="black" points="1003.5,-540 801.5,-540 801.5,-504 1003.5,-504 1003.5,-540"/>
+<text text-anchor="middle" x="902.5" y="-518.3" font-family="Times New Roman,serif" font-size="14.00">aws_appautoscaling_target.target</text>
+</g>
+<!-- [root] aws_appautoscaling_policy.down (expand)&#45;&gt;[root] aws_appautoscaling_target.target (expand) -->
+<g id="edge7" class="edge">
+<title>[root] aws_appautoscaling_policy.down (expand)&#45;&gt;[root] aws_appautoscaling_target.target (expand)</title>
+<path fill="none" stroke="black" d="M809.59,-575.88C825.82,-566.64 846.04,-555.13 863.47,-545.21"/>
+<polygon fill="black" stroke="black" points="865.34,-548.18 872.3,-540.19 861.87,-542.09 865.34,-548.18"/>
+</g>
+<!-- [root] aws_appautoscaling_policy.up (expand) -->
+<g id="node5" class="node">
+<title>[root] aws_appautoscaling_policy.up (expand)</title>
+<polygon fill="none" stroke="black" points="1136,-612 947,-612 947,-576 1136,-576 1136,-612"/>
+<text text-anchor="middle" x="1041.5" y="-590.3" font-family="Times New Roman,serif" font-size="14.00">aws_appautoscaling_policy.up</text>
+</g>
+<!-- [root] aws_appautoscaling_policy.up (expand)&#45;&gt;[root] aws_appautoscaling_target.target (expand) -->
+<g id="edge8" class="edge">
+<title>[root] aws_appautoscaling_policy.up (expand)&#45;&gt;[root] aws_appautoscaling_target.target (expand)</title>
+<path fill="none" stroke="black" d="M1007.5,-575.88C988.9,-566.51 965.67,-554.81 945.79,-544.8"/>
+<polygon fill="black" stroke="black" points="947.14,-541.56 936.63,-540.19 943.99,-547.81 947.14,-541.56"/>
+</g>
+<!-- [root] aws_ecs_service.main (expand) -->
+<g id="node12" class="node">
+<title>[root] aws_ecs_service.main (expand)</title>
+<polygon fill="none" stroke="black" points="973,-468 832,-468 832,-432 973,-432 973,-468"/>
+<text text-anchor="middle" x="902.5" y="-446.3" font-family="Times New Roman,serif" font-size="14.00">aws_ecs_service.main</text>
+</g>
+<!-- [root] aws_appautoscaling_target.target (expand)&#45;&gt;[root] aws_ecs_service.main (expand) -->
+<g id="edge9" class="edge">
+<title>[root] aws_appautoscaling_target.target (expand)&#45;&gt;[root] aws_ecs_service.main (expand)</title>
+<path fill="none" stroke="black" d="M902.5,-503.7C902.5,-495.98 902.5,-486.71 902.5,-478.11"/>
+<polygon fill="black" stroke="black" points="906,-478.1 902.5,-468.1 899,-478.1 906,-478.1"/>
+</g>
+<!-- [root] aws_cloudwatch_log_group.cb_log_group (expand) -->
+<g id="node7" class="node">
+<title>[root] aws_cloudwatch_log_group.cb_log_group (expand)</title>
+<polygon fill="none" stroke="black" points="259,-612 0,-612 0,-576 259,-576 259,-612"/>
+<text text-anchor="middle" x="129.5" y="-590.3" font-family="Times New Roman,serif" font-size="14.00">aws_cloudwatch_log_group.cb_log_group</text>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="node32" class="node">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<polygon fill="none" stroke="black" points="756.5,-108 499.27,-90 756.5,-72 1013.73,-90 756.5,-108"/>
+<text text-anchor="middle" x="756.5" y="-86.3" font-family="Times New Roman,serif" font-size="14.00">provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</text>
+</g>
+<!-- [root] aws_cloudwatch_log_group.cb_log_group (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge10" class="edge">
+<title>[root] aws_cloudwatch_log_group.cb_log_group (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M135.98,-575.79C145.33,-549.36 161.5,-496.99 161.5,-451 161.5,-451 161.5,-451 161.5,-233 161.5,-181.84 189.42,-168.19 234.5,-144 289.79,-114.33 436.75,-101.24 560.7,-95.49"/>
+<polygon fill="black" stroke="black" points="560.89,-98.98 570.72,-95.03 560.57,-91.99 560.89,-98.98"/>
+</g>
+<!-- [root] aws_cloudwatch_log_stream.cb_log_stream (expand) -->
+<g id="node8" class="node">
+<title>[root] aws_cloudwatch_log_stream.cb_log_stream (expand)</title>
+<polygon fill="none" stroke="black" points="334.5,-684 68.5,-684 68.5,-648 334.5,-648 334.5,-684"/>
+<text text-anchor="middle" x="201.5" y="-662.3" font-family="Times New Roman,serif" font-size="14.00">aws_cloudwatch_log_stream.cb_log_stream</text>
+</g>
+<!-- [root] aws_cloudwatch_log_stream.cb_log_stream (expand)&#45;&gt;[root] aws_cloudwatch_log_group.cb_log_group (expand) -->
+<g id="edge11" class="edge">
+<title>[root] aws_cloudwatch_log_stream.cb_log_stream (expand)&#45;&gt;[root] aws_cloudwatch_log_group.cb_log_group (expand)</title>
+<path fill="none" stroke="black" d="M183.7,-647.7C174.9,-639.14 164.12,-628.66 154.5,-619.3"/>
+<polygon fill="black" stroke="black" points="156.7,-616.57 147.09,-612.1 151.82,-621.58 156.7,-616.57"/>
+</g>
+<!-- [root] aws_cloudwatch_metric_alarm.service_cpu_high (expand) -->
+<g id="node9" class="node">
+<title>[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand)</title>
+<polygon fill="none" stroke="black" points="1210.5,-684 918.5,-684 918.5,-648 1210.5,-648 1210.5,-684"/>
+<text text-anchor="middle" x="1064.5" y="-662.3" font-family="Times New Roman,serif" font-size="14.00">aws_cloudwatch_metric_alarm.service_cpu_high</text>
+</g>
+<!-- [root] aws_cloudwatch_metric_alarm.service_cpu_high (expand)&#45;&gt;[root] aws_appautoscaling_policy.up (expand) -->
+<g id="edge12" class="edge">
+<title>[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand)&#45;&gt;[root] aws_appautoscaling_policy.up (expand)</title>
+<path fill="none" stroke="black" d="M1058.81,-647.7C1056.25,-639.9 1053.17,-630.51 1050.32,-621.83"/>
+<polygon fill="black" stroke="black" points="1053.57,-620.51 1047.12,-612.1 1046.92,-622.7 1053.57,-620.51"/>
+</g>
+<!-- [root] aws_cloudwatch_metric_alarm.service_cpu_low (expand) -->
+<g id="node10" class="node">
+<title>[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand)</title>
+<polygon fill="none" stroke="black" points="900,-684 611,-684 611,-648 900,-648 900,-684"/>
+<text text-anchor="middle" x="755.5" y="-662.3" font-family="Times New Roman,serif" font-size="14.00">aws_cloudwatch_metric_alarm.service_cpu_low</text>
+</g>
+<!-- [root] aws_cloudwatch_metric_alarm.service_cpu_low (expand)&#45;&gt;[root] aws_appautoscaling_policy.down (expand) -->
+<g id="edge13" class="edge">
+<title>[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand)&#45;&gt;[root] aws_appautoscaling_policy.down (expand)</title>
+<path fill="none" stroke="black" d="M761.43,-647.7C764.11,-639.9 767.33,-630.51 770.3,-621.83"/>
+<polygon fill="black" stroke="black" points="773.7,-622.7 773.64,-612.1 767.08,-620.43 773.7,-622.7"/>
+</g>
+<!-- [root] aws_ecs_cluster.main (expand) -->
+<g id="node11" class="node">
+<title>[root] aws_ecs_cluster.main (expand)</title>
+<polygon fill="none" stroke="black" points="1308,-180 1169,-180 1169,-144 1308,-144 1308,-180"/>
+<text text-anchor="middle" x="1238.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">aws_ecs_cluster.main</text>
+</g>
+<!-- [root] aws_ecs_cluster.main (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge14" class="edge">
+<title>[root] aws_ecs_cluster.main (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M1168.82,-145.51C1166.01,-144.98 1163.23,-144.48 1160.5,-144 1060.09,-126.5 944.72,-111.91 863.05,-102.5"/>
+<polygon fill="black" stroke="black" points="863.09,-98.98 852.76,-101.32 862.29,-105.94 863.09,-98.98"/>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_alb_listener.front_end (expand) -->
+<g id="edge15" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_alb_listener.front_end (expand)</title>
+<path fill="none" stroke="black" d="M875.1,-431.88C860.59,-422.81 842.58,-411.55 826.91,-401.76"/>
+<polygon fill="black" stroke="black" points="828.34,-398.52 818,-396.19 824.63,-404.46 828.34,-398.52"/>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_ecs_cluster.main (expand) -->
+<g id="edge16" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_ecs_cluster.main (expand)</title>
+<path fill="none" stroke="black" d="M973.13,-447.76C1120.25,-444.46 1448.76,-432.97 1482.5,-396 1558.19,-313.08 1383.76,-223.72 1291.32,-184.04"/>
+<polygon fill="black" stroke="black" points="1292.67,-180.81 1282.1,-180.13 1289.94,-187.25 1292.67,-180.81"/>
+</g>
+<!-- [root] aws_ecs_task_definition.app (expand) -->
+<g id="node13" class="node">
+<title>[root] aws_ecs_task_definition.app (expand)</title>
+<polygon fill="none" stroke="black" points="1473,-396 1294,-396 1294,-360 1473,-360 1473,-396"/>
+<text text-anchor="middle" x="1383.5" y="-374.3" font-family="Times New Roman,serif" font-size="14.00">aws_ecs_task_definition.app</text>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_ecs_task_definition.app (expand) -->
+<g id="edge17" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_ecs_task_definition.app (expand)</title>
+<path fill="none" stroke="black" d="M973.2,-439.95C1047.96,-430.22 1169.6,-413.91 1283.83,-396.24"/>
+<polygon fill="black" stroke="black" points="1284.45,-399.68 1293.8,-394.69 1283.38,-392.76 1284.45,-399.68"/>
+</g>
+<!-- [root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand) -->
+<g id="node16" class="node">
+<title>[root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand)</title>
+<polygon fill="none" stroke="black" points="1276,-396 931,-396 931,-360 1276,-360 1276,-396"/>
+<text text-anchor="middle" x="1103.5" y="-374.3" font-family="Times New Roman,serif" font-size="14.00">aws_iam_role_policy_attachment.ecs_task_execution_role</text>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand) -->
+<g id="edge18" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand)</title>
+<path fill="none" stroke="black" d="M951.41,-431.97C979.5,-422.19 1014.96,-409.84 1044.57,-399.52"/>
+<polygon fill="black" stroke="black" points="1046.07,-402.71 1054.37,-396.11 1043.77,-396.09 1046.07,-402.71"/>
+</g>
+<!-- [root] aws_security_group.ecs_tasks (expand) -->
+<g id="node22" class="node">
+<title>[root] aws_security_group.ecs_tasks (expand)</title>
+<polygon fill="none" stroke="black" points="1080.5,-324 892.5,-324 892.5,-288 1080.5,-288 1080.5,-324"/>
+<text text-anchor="middle" x="986.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">aws_security_group.ecs_tasks</text>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_security_group.ecs_tasks (expand) -->
+<g id="edge19" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_security_group.ecs_tasks (expand)</title>
+<path fill="none" stroke="black" d="M903.11,-431.7C904.48,-412.81 908.84,-382.28 922.5,-360 929.46,-348.65 939.73,-338.59 950.01,-330.37"/>
+<polygon fill="black" stroke="black" points="952.32,-333 958.19,-324.18 948.1,-327.42 952.32,-333"/>
+</g>
+<!-- [root] aws_subnet.private (expand) -->
+<g id="node24" class="node">
+<title>[root] aws_subnet.private (expand)</title>
+<polygon fill="none" stroke="black" points="382.5,-252 258.5,-252 258.5,-216 382.5,-216 382.5,-252"/>
+<text text-anchor="middle" x="320.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">aws_subnet.private</text>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_subnet.private (expand) -->
+<g id="edge20" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] aws_subnet.private (expand)</title>
+<path fill="none" stroke="black" d="M832,-440.17C808.91,-437.4 783.13,-434.43 759.5,-432 713.68,-427.28 380.24,-427.36 346.5,-396 310.04,-362.11 311.39,-298.83 315.82,-262.52"/>
+<polygon fill="black" stroke="black" points="319.35,-262.56 317.26,-252.18 312.42,-261.6 319.35,-262.56"/>
+</g>
+<!-- [root] var.app_count -->
+<g id="node34" class="node">
+<title>[root] var.app_count</title>
+<polygon fill="none" stroke="black" points="682.5,-396 590.5,-396 590.5,-360 688.5,-360 688.5,-390 682.5,-396"/>
+<polyline fill="none" stroke="black" points="682.5,-396 682.5,-390 "/>
+<polyline fill="none" stroke="black" points="688.5,-390 682.5,-390 "/>
+<text text-anchor="middle" x="639.5" y="-374.3" font-family="Times New Roman,serif" font-size="14.00">var.app_count</text>
+</g>
+<!-- [root] aws_ecs_service.main (expand)&#45;&gt;[root] var.app_count -->
+<g id="edge21" class="edge">
+<title>[root] aws_ecs_service.main (expand)&#45;&gt;[root] var.app_count</title>
+<path fill="none" stroke="black" d="M834.85,-431.9C795.07,-421.73 743.85,-408.42 698.5,-396 698.4,-395.97 698.3,-395.95 698.2,-395.92"/>
+<polygon fill="black" stroke="black" points="699.3,-392.59 688.73,-393.29 697.43,-399.34 699.3,-392.59"/>
+</g>
+<!-- [root] aws_iam_role.ecs_task_execution_role (expand) -->
+<g id="node15" class="node">
+<title>[root] aws_iam_role.ecs_task_execution_role (expand)</title>
+<polygon fill="none" stroke="black" points="1337.5,-324 1101.5,-324 1101.5,-288 1337.5,-288 1337.5,-324"/>
+<text text-anchor="middle" x="1219.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">aws_iam_role.ecs_task_execution_role</text>
+</g>
+<!-- [root] aws_ecs_task_definition.app (expand)&#45;&gt;[root] aws_iam_role.ecs_task_execution_role (expand) -->
+<g id="edge22" class="edge">
+<title>[root] aws_ecs_task_definition.app (expand)&#45;&gt;[root] aws_iam_role.ecs_task_execution_role (expand)</title>
+<path fill="none" stroke="black" d="M1343.38,-359.88C1320.86,-350.26 1292.58,-338.19 1268.73,-328.01"/>
+<polygon fill="black" stroke="black" points="1270.06,-324.77 1259.49,-324.07 1267.31,-331.21 1270.06,-324.77"/>
+</g>
+<!-- [root] data.template_file.cb_app (expand) -->
+<g id="node30" class="node">
+<title>[root] data.template_file.cb_app (expand)</title>
+<polygon fill="none" stroke="black" points="1683,-324 1522,-324 1522,-288 1683,-288 1683,-324"/>
+<text text-anchor="middle" x="1602.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">data.template_file.cb_app</text>
+</g>
+<!-- [root] aws_ecs_task_definition.app (expand)&#45;&gt;[root] data.template_file.cb_app (expand) -->
+<g id="edge23" class="edge">
+<title>[root] aws_ecs_task_definition.app (expand)&#45;&gt;[root] data.template_file.cb_app (expand)</title>
+<path fill="none" stroke="black" d="M1436.79,-359.97C1467.66,-350.1 1506.7,-337.62 1539.13,-327.25"/>
+<polygon fill="black" stroke="black" points="1540.51,-330.49 1548.97,-324.11 1538.38,-323.82 1540.51,-330.49"/>
+</g>
+<!-- [root] aws_eip.gw (expand) -->
+<g id="node14" class="node">
+<title>[root] aws_eip.gw (expand)</title>
+<polygon fill="none" stroke="black" points="439,-324 356,-324 356,-288 439,-288 439,-324"/>
+<text text-anchor="middle" x="397.5" y="-302.3" font-family="Times New Roman,serif" font-size="14.00">aws_eip.gw</text>
+</g>
+<!-- [root] aws_internet_gateway.gw (expand) -->
+<g id="node17" class="node">
+<title>[root] aws_internet_gateway.gw (expand)</title>
+<polygon fill="none" stroke="black" points="699,-252 540,-252 540,-216 699,-216 699,-252"/>
+<text text-anchor="middle" x="619.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">aws_internet_gateway.gw</text>
+</g>
+<!-- [root] aws_eip.gw (expand)&#45;&gt;[root] aws_internet_gateway.gw (expand) -->
+<g id="edge24" class="edge">
+<title>[root] aws_eip.gw (expand)&#45;&gt;[root] aws_internet_gateway.gw (expand)</title>
+<path fill="none" stroke="black" d="M439.26,-291.83C472,-281.51 518.13,-266.96 555.53,-255.17"/>
+<polygon fill="black" stroke="black" points="556.84,-258.43 565.33,-252.08 554.74,-251.75 556.84,-258.43"/>
+</g>
+<!-- [root] var.az_count -->
+<g id="node37" class="node">
+<title>[root] var.az_count</title>
+<polygon fill="none" stroke="black" points="327,-180 244,-180 244,-144 333,-144 333,-174 327,-180"/>
+<polyline fill="none" stroke="black" points="327,-180 327,-174 "/>
+<polyline fill="none" stroke="black" points="333,-174 327,-174 "/>
+<text text-anchor="middle" x="288.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">var.az_count</text>
+</g>
+<!-- [root] aws_eip.gw (expand)&#45;&gt;[root] var.az_count -->
+<g id="edge25" class="edge">
+<title>[root] aws_eip.gw (expand)&#45;&gt;[root] var.az_count</title>
+<path fill="none" stroke="black" d="M355.89,-302.66C321.08,-298.24 273.38,-285.92 249.5,-252 235.54,-232.17 249.55,-206.56 264.52,-187.9"/>
+<polygon fill="black" stroke="black" points="267.33,-190 271.15,-180.11 262,-185.46 267.33,-190"/>
+</g>
+<!-- [root] data.aws_iam_policy_document.ecs_task_execution_role (expand) -->
+<g id="node29" class="node">
+<title>[root] data.aws_iam_policy_document.ecs_task_execution_role (expand)</title>
+<polygon fill="none" stroke="black" points="1044,-180 705,-180 705,-144 1044,-144 1044,-180"/>
+<text text-anchor="middle" x="874.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">data.aws_iam_policy_document.ecs_task_execution_role</text>
+</g>
+<!-- [root] aws_iam_role.ecs_task_execution_role (expand)&#45;&gt;[root] data.aws_iam_policy_document.ecs_task_execution_role (expand) -->
+<g id="edge26" class="edge">
+<title>[root] aws_iam_role.ecs_task_execution_role (expand)&#45;&gt;[root] data.aws_iam_policy_document.ecs_task_execution_role (expand)</title>
+<path fill="none" stroke="black" d="M1174.81,-287.96C1153.28,-278.79 1127.63,-266.41 1106.5,-252 1087.28,-238.89 1088.78,-227.41 1068.5,-216 1042.39,-201.31 1011.99,-190.51 983.11,-182.65"/>
+<polygon fill="black" stroke="black" points="983.94,-179.25 973.38,-180.09 982.17,-186.02 983.94,-179.25"/>
+</g>
+<!-- [root] var.ecs_task_execution_role_name -->
+<g id="node39" class="node">
+<title>[root] var.ecs_task_execution_role_name</title>
+<polygon fill="none" stroke="black" points="1321.5,-252 1115.5,-252 1115.5,-216 1327.5,-216 1327.5,-246 1321.5,-252"/>
+<polyline fill="none" stroke="black" points="1321.5,-252 1321.5,-246 "/>
+<polyline fill="none" stroke="black" points="1327.5,-246 1321.5,-246 "/>
+<text text-anchor="middle" x="1221.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">var.ecs_task_execution_role_name</text>
+</g>
+<!-- [root] aws_iam_role.ecs_task_execution_role (expand)&#45;&gt;[root] var.ecs_task_execution_role_name -->
+<g id="edge27" class="edge">
+<title>[root] aws_iam_role.ecs_task_execution_role (expand)&#45;&gt;[root] var.ecs_task_execution_role_name</title>
+<path fill="none" stroke="black" d="M1219.99,-287.7C1220.21,-279.98 1220.48,-270.71 1220.73,-262.11"/>
+<polygon fill="black" stroke="black" points="1224.22,-262.2 1221.01,-252.1 1217.23,-262 1224.22,-262.2"/>
+</g>
+<!-- [root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand)&#45;&gt;[root] aws_iam_role.ecs_task_execution_role (expand) -->
+<g id="edge28" class="edge">
+<title>[root] aws_iam_role_policy_attachment.ecs_task_execution_role (expand)&#45;&gt;[root] aws_iam_role.ecs_task_execution_role (expand)</title>
+<path fill="none" stroke="black" d="M1131.88,-359.88C1147.04,-350.72 1165.91,-339.34 1182.24,-329.48"/>
+<polygon fill="black" stroke="black" points="1184.26,-332.35 1191.01,-324.19 1180.64,-326.36 1184.26,-332.35"/>
+</g>
+<!-- [root] aws_internet_gateway.gw (expand)&#45;&gt;[root] aws_vpc.main (expand) -->
+<g id="edge29" class="edge">
+<title>[root] aws_internet_gateway.gw (expand)&#45;&gt;[root] aws_vpc.main (expand)</title>
+<path fill="none" stroke="black" d="M624.2,-215.7C626.31,-207.9 628.86,-198.51 631.22,-189.83"/>
+<polygon fill="black" stroke="black" points="634.62,-190.67 633.86,-180.1 627.86,-188.84 634.62,-190.67"/>
+</g>
+<!-- [root] aws_nat_gateway.gw (expand) -->
+<g id="node18" class="node">
+<title>[root] aws_nat_gateway.gw (expand)</title>
+<polygon fill="none" stroke="black" points="491,-396 356,-396 356,-360 491,-360 491,-396"/>
+<text text-anchor="middle" x="423.5" y="-374.3" font-family="Times New Roman,serif" font-size="14.00">aws_nat_gateway.gw</text>
+</g>
+<!-- [root] aws_nat_gateway.gw (expand)&#45;&gt;[root] aws_eip.gw (expand) -->
+<g id="edge30" class="edge">
+<title>[root] aws_nat_gateway.gw (expand)&#45;&gt;[root] aws_eip.gw (expand)</title>
+<path fill="none" stroke="black" d="M417.07,-359.7C414.14,-351.81 410.61,-342.3 407.36,-333.55"/>
+<polygon fill="black" stroke="black" points="410.62,-332.26 403.85,-324.1 404.05,-334.7 410.62,-332.26"/>
+</g>
+<!-- [root] aws_nat_gateway.gw (expand)&#45;&gt;[root] aws_subnet.public (expand) -->
+<g id="edge31" class="edge">
+<title>[root] aws_nat_gateway.gw (expand)&#45;&gt;[root] aws_subnet.public (expand)</title>
+<path fill="none" stroke="black" d="M432.72,-359.79C437.8,-349.64 443.8,-336.39 447.5,-324 453.58,-303.68 457.15,-279.91 459.16,-262.05"/>
+<polygon fill="black" stroke="black" points="462.65,-262.34 460.19,-252.03 455.68,-261.62 462.65,-262.34"/>
+</g>
+<!-- [root] aws_route.internet_access (expand) -->
+<g id="node19" class="node">
+<title>[root] aws_route.internet_access (expand)</title>
+<polygon fill="none" stroke="black" points="592.5,-684 428.5,-684 428.5,-648 592.5,-648 592.5,-684"/>
+<text text-anchor="middle" x="510.5" y="-662.3" font-family="Times New Roman,serif" font-size="14.00">aws_route.internet_access</text>
+</g>
+<!-- [root] aws_route.internet_access (expand)&#45;&gt;[root] aws_internet_gateway.gw (expand) -->
+<g id="edge32" class="edge">
+<title>[root] aws_route.internet_access (expand)&#45;&gt;[root] aws_internet_gateway.gw (expand)</title>
+<path fill="none" stroke="black" d="M513.33,-647.57C517.42,-620.84 524.5,-568.09 524.5,-523 524.5,-523 524.5,-523 524.5,-377 524.5,-329.01 562.44,-284.96 590.37,-259.04"/>
+<polygon fill="black" stroke="black" points="592.85,-261.52 597.94,-252.22 588.17,-256.31 592.85,-261.52"/>
+</g>
+<!-- [root] aws_route_table.private (expand) -->
+<g id="node20" class="node">
+<title>[root] aws_route_table.private (expand)</title>
+<polygon fill="none" stroke="black" points="479,-540 330,-540 330,-504 479,-504 479,-540"/>
+<text text-anchor="middle" x="404.5" y="-518.3" font-family="Times New Roman,serif" font-size="14.00">aws_route_table.private</text>
+</g>
+<!-- [root] aws_route_table.private (expand)&#45;&gt;[root] aws_nat_gateway.gw (expand) -->
+<g id="edge33" class="edge">
+<title>[root] aws_route_table.private (expand)&#45;&gt;[root] aws_nat_gateway.gw (expand)</title>
+<path fill="none" stroke="black" d="M406.79,-503.87C410.03,-479.67 415.98,-435.21 419.83,-406.39"/>
+<polygon fill="black" stroke="black" points="423.34,-406.57 421.2,-396.19 416.4,-405.64 423.34,-406.57"/>
+</g>
+<!-- [root] aws_route_table_association.private (expand) -->
+<g id="node21" class="node">
+<title>[root] aws_route_table_association.private (expand)</title>
+<polygon fill="none" stroke="black" points="496,-612 277,-612 277,-576 496,-576 496,-612"/>
+<text text-anchor="middle" x="386.5" y="-590.3" font-family="Times New Roman,serif" font-size="14.00">aws_route_table_association.private</text>
+</g>
+<!-- [root] aws_route_table_association.private (expand)&#45;&gt;[root] aws_route_table.private (expand) -->
+<g id="edge34" class="edge">
+<title>[root] aws_route_table_association.private (expand)&#45;&gt;[root] aws_route_table.private (expand)</title>
+<path fill="none" stroke="black" d="M390.95,-575.7C392.95,-567.9 395.37,-558.51 397.6,-549.83"/>
+<polygon fill="black" stroke="black" points="401,-550.66 400.1,-540.1 394.22,-548.92 401,-550.66"/>
+</g>
+<!-- [root] aws_route_table_association.private (expand)&#45;&gt;[root] aws_subnet.private (expand) -->
+<g id="edge35" class="edge">
+<title>[root] aws_route_table_association.private (expand)&#45;&gt;[root] aws_subnet.private (expand)</title>
+<path fill="none" stroke="black" d="M358.69,-575.98C345.56,-566.74 330.59,-554.29 320.5,-540 296.34,-505.78 289.5,-492.89 289.5,-451 289.5,-451 289.5,-451 289.5,-377 289.5,-336.1 301.93,-290.06 311.05,-261.79"/>
+<polygon fill="black" stroke="black" points="314.39,-262.82 314.23,-252.22 307.75,-260.61 314.39,-262.82"/>
+</g>
+<!-- [root] aws_security_group.ecs_tasks (expand)&#45;&gt;[root] aws_security_group.lb (expand) -->
+<g id="edge36" class="edge">
+<title>[root] aws_security_group.ecs_tasks (expand)&#45;&gt;[root] aws_security_group.lb (expand)</title>
+<path fill="none" stroke="black" d="M986.75,-287.7C986.86,-279.98 986.99,-270.71 987.11,-262.11"/>
+<polygon fill="black" stroke="black" points="990.61,-262.15 987.26,-252.1 983.61,-262.05 990.61,-262.15"/>
+</g>
+<!-- [root] aws_security_group.lb (expand)&#45;&gt;[root] aws_vpc.main (expand) -->
+<g id="edge37" class="edge">
+<title>[root] aws_security_group.lb (expand)&#45;&gt;[root] aws_vpc.main (expand)</title>
+<path fill="none" stroke="black" d="M915.26,-218.6C910.61,-217.71 905.99,-216.84 901.5,-216 813.67,-199.61 788.3,-200.93 697.07,-179.99"/>
+<polygon fill="black" stroke="black" points="697.66,-176.53 687.13,-177.68 696.08,-183.35 697.66,-176.53"/>
+</g>
+<!-- [root] var.app_port -->
+<g id="node35" class="node">
+<title>[root] var.app_port</title>
+<polygon fill="none" stroke="black" points="1145,-180 1062,-180 1062,-144 1151,-144 1151,-174 1145,-180"/>
+<polyline fill="none" stroke="black" points="1145,-180 1145,-174 "/>
+<polyline fill="none" stroke="black" points="1151,-174 1145,-174 "/>
+<text text-anchor="middle" x="1106.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">var.app_port</text>
+</g>
+<!-- [root] aws_security_group.lb (expand)&#45;&gt;[root] var.app_port -->
+<g id="edge38" class="edge">
+<title>[root] aws_security_group.lb (expand)&#45;&gt;[root] var.app_port</title>
+<path fill="none" stroke="black" d="M1016.61,-215.88C1032.17,-206.72 1051.52,-195.34 1068.28,-185.48"/>
+<polygon fill="black" stroke="black" points="1070.43,-188.28 1077.28,-180.19 1066.88,-182.24 1070.43,-188.28"/>
+</g>
+<!-- [root] aws_subnet.private (expand)&#45;&gt;[root] aws_vpc.main (expand) -->
+<g id="edge39" class="edge">
+<title>[root] aws_subnet.private (expand)&#45;&gt;[root] aws_vpc.main (expand)</title>
+<path fill="none" stroke="black" d="M382.8,-217.91C385.74,-217.25 388.65,-216.61 391.5,-216 472.42,-198.66 496.24,-200.16 579.83,-180.29"/>
+<polygon fill="black" stroke="black" points="580.87,-183.64 589.77,-177.89 579.23,-176.83 580.87,-183.64"/>
+</g>
+<!-- [root] data.aws_availability_zones.available (expand) -->
+<g id="node27" class="node">
+<title>[root] data.aws_availability_zones.available (expand)</title>
+<polygon fill="none" stroke="black" points="572,-180 351,-180 351,-144 572,-144 572,-180"/>
+<text text-anchor="middle" x="461.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">data.aws_availability_zones.available</text>
+</g>
+<!-- [root] aws_subnet.private (expand)&#45;&gt;[root] data.aws_availability_zones.available (expand) -->
+<g id="edge40" class="edge">
+<title>[root] aws_subnet.private (expand)&#45;&gt;[root] data.aws_availability_zones.available (expand)</title>
+<path fill="none" stroke="black" d="M354.99,-215.88C373.94,-206.47 397.63,-194.71 417.86,-184.67"/>
+<polygon fill="black" stroke="black" points="419.47,-187.77 426.87,-180.19 416.36,-181.5 419.47,-187.77"/>
+</g>
+<!-- [root] aws_subnet.private (expand)&#45;&gt;[root] var.az_count -->
+<g id="edge41" class="edge">
+<title>[root] aws_subnet.private (expand)&#45;&gt;[root] var.az_count</title>
+<path fill="none" stroke="black" d="M312.59,-215.7C308.95,-207.73 304.55,-198.1 300.51,-189.26"/>
+<polygon fill="black" stroke="black" points="303.66,-187.74 296.32,-180.1 297.29,-190.65 303.66,-187.74"/>
+</g>
+<!-- [root] aws_subnet.public (expand)&#45;&gt;[root] aws_vpc.main (expand) -->
+<g id="edge42" class="edge">
+<title>[root] aws_subnet.public (expand)&#45;&gt;[root] aws_vpc.main (expand)</title>
+<path fill="none" stroke="black" d="M504.8,-215.88C529.21,-206.22 559.9,-194.09 585.71,-183.88"/>
+<polygon fill="black" stroke="black" points="587.33,-187 595.34,-180.07 584.76,-180.49 587.33,-187"/>
+</g>
+<!-- [root] aws_subnet.public (expand)&#45;&gt;[root] data.aws_availability_zones.available (expand) -->
+<g id="edge43" class="edge">
+<title>[root] aws_subnet.public (expand)&#45;&gt;[root] data.aws_availability_zones.available (expand)</title>
+<path fill="none" stroke="black" d="M461.5,-215.7C461.5,-207.98 461.5,-198.71 461.5,-190.11"/>
+<polygon fill="black" stroke="black" points="465,-190.1 461.5,-180.1 458,-190.1 465,-190.1"/>
+</g>
+<!-- [root] aws_subnet.public (expand)&#45;&gt;[root] var.az_count -->
+<g id="edge44" class="edge">
+<title>[root] aws_subnet.public (expand)&#45;&gt;[root] var.az_count</title>
+<path fill="none" stroke="black" d="M419.18,-215.88C395.32,-206.22 365.33,-194.09 340.1,-183.88"/>
+<polygon fill="black" stroke="black" points="341.27,-180.57 330.68,-180.07 338.64,-187.06 341.27,-180.57"/>
+</g>
+<!-- [root] aws_vpc.main (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge45" class="edge">
+<title>[root] aws_vpc.main (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M667.37,-143.88C683.87,-134.09 704.67,-121.75 722.02,-111.45"/>
+<polygon fill="black" stroke="black" points="723.93,-114.39 730.74,-106.28 720.36,-108.37 723.93,-114.39"/>
+</g>
+<!-- [root] data.aws_availability_zones.available (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge46" class="edge">
+<title>[root] data.aws_availability_zones.available (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M533.29,-143.97C581.43,-132.54 644.34,-117.61 691.1,-106.52"/>
+<polygon fill="black" stroke="black" points="692.19,-109.86 701.12,-104.14 690.58,-103.05 692.19,-109.86"/>
+</g>
+<!-- [root] data.aws_ecr_repository.nodeapp (expand) -->
+<g id="node28" class="node">
+<title>[root] data.aws_ecr_repository.nodeapp (expand)</title>
+<polygon fill="none" stroke="black" points="1533,-180 1326,-180 1326,-144 1533,-144 1533,-180"/>
+<text text-anchor="middle" x="1429.5" y="-158.3" font-family="Times New Roman,serif" font-size="14.00">data.aws_ecr_repository.nodeapp</text>
+</g>
+<!-- [root] data.aws_ecr_repository.nodeapp (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge47" class="edge">
+<title>[root] data.aws_ecr_repository.nodeapp (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M1325.79,-145.05C1323,-144.69 1320.23,-144.34 1317.5,-144 1168.11,-125.62 995.65,-110.19 881.81,-100.8"/>
+<polygon fill="black" stroke="black" points="881.92,-97.3 871.67,-99.97 881.35,-104.28 881.92,-97.3"/>
+</g>
+<!-- [root] data.aws_iam_policy_document.ecs_task_execution_role (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] -->
+<g id="edge48" class="edge">
+<title>[root] data.aws_iam_policy_document.ecs_task_execution_role (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]</title>
+<path fill="none" stroke="black" d="M845.63,-143.88C829.13,-134.09 808.33,-121.75 790.98,-111.45"/>
+<polygon fill="black" stroke="black" points="792.64,-108.37 782.26,-106.28 789.07,-114.39 792.64,-108.37"/>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] data.aws_ecr_repository.nodeapp (expand) -->
+<g id="edge49" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] data.aws_ecr_repository.nodeapp (expand)</title>
+<path fill="none" stroke="black" d="M1521.92,-293.64C1495.12,-286.01 1467.34,-273.27 1448.5,-252 1433.65,-235.23 1429.42,-209.75 1428.6,-190.34"/>
+<polygon fill="black" stroke="black" points="1432.1,-190.22 1428.45,-180.28 1425.1,-190.33 1432.1,-190.22"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] -->
+<g id="node33" class="node">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;]</title>
+<polygon fill="none" stroke="black" points="1993.5,-252 1713.31,-234 1993.5,-216 2273.69,-234 1993.5,-252"/>
+<text text-anchor="middle" x="1993.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">provider[&quot;registry.terraform.io/hashicorp/template&quot;]</text>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] -->
+<g id="edge50" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;]</title>
+<path fill="none" stroke="black" d="M1683.04,-290.58C1750.45,-278.51 1846.13,-261.38 1913.41,-249.34"/>
+<polygon fill="black" stroke="black" points="1914.31,-252.73 1923.54,-247.52 1913.08,-245.84 1914.31,-252.73"/>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] var.app_port -->
+<g id="edge51" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] var.app_port</title>
+<path fill="none" stroke="black" d="M1629.12,-287.97C1655.13,-269.31 1687.9,-238.98 1666.5,-216 1629.7,-176.49 1249.83,-189.31 1161.03,-179.36"/>
+<polygon fill="black" stroke="black" points="1161.48,-175.89 1151.08,-177.92 1160.48,-182.82 1161.48,-175.89"/>
+</g>
+<!-- [root] var.fargate_cpu -->
+<g id="node40" class="node">
+<title>[root] var.fargate_cpu</title>
+<polygon fill="none" stroke="black" points="2389.5,-252 2291.5,-252 2291.5,-216 2395.5,-216 2395.5,-246 2389.5,-252"/>
+<polyline fill="none" stroke="black" points="2389.5,-252 2389.5,-246 "/>
+<polyline fill="none" stroke="black" points="2395.5,-246 2389.5,-246 "/>
+<text text-anchor="middle" x="2343.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">var.fargate_cpu</text>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] var.fargate_cpu -->
+<g id="edge52" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] var.fargate_cpu</title>
+<path fill="none" stroke="black" d="M1683.22,-303.76C1809.28,-300.71 2060.48,-290.16 2281.25,-252.01"/>
+<polygon fill="black" stroke="black" points="2282.16,-255.41 2291.41,-250.23 2280.96,-248.51 2282.16,-255.41"/>
+</g>
+<!-- [root] var.fargate_memory -->
+<g id="node41" class="node">
+<title>[root] var.fargate_memory</title>
+<polygon fill="none" stroke="black" points="1579.5,-252 1457.5,-252 1457.5,-216 1585.5,-216 1585.5,-246 1579.5,-252"/>
+<polyline fill="none" stroke="black" points="1579.5,-252 1579.5,-246 "/>
+<polyline fill="none" stroke="black" points="1585.5,-246 1579.5,-246 "/>
+<text text-anchor="middle" x="1521.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">var.fargate_memory</text>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] var.fargate_memory -->
+<g id="edge53" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] var.fargate_memory</title>
+<path fill="none" stroke="black" d="M1582.48,-287.7C1572.37,-278.97 1559.96,-268.24 1548.98,-258.75"/>
+<polygon fill="black" stroke="black" points="1551.15,-255.99 1541.29,-252.1 1546.57,-261.29 1551.15,-255.99"/>
+</g>
+<!-- [root] var.tag -->
+<g id="node43" class="node">
+<title>[root] var.tag</title>
+<polygon fill="none" stroke="black" points="1651.5,-252 1603.5,-252 1603.5,-216 1657.5,-216 1657.5,-246 1651.5,-252"/>
+<polyline fill="none" stroke="black" points="1651.5,-252 1651.5,-246 "/>
+<polyline fill="none" stroke="black" points="1657.5,-246 1651.5,-246 "/>
+<text text-anchor="middle" x="1630.5" y="-230.3" font-family="Times New Roman,serif" font-size="14.00">var.tag</text>
+</g>
+<!-- [root] data.template_file.cb_app (expand)&#45;&gt;[root] var.tag -->
+<g id="edge54" class="edge">
+<title>[root] data.template_file.cb_app (expand)&#45;&gt;[root] var.tag</title>
+<path fill="none" stroke="black" d="M1609.42,-287.7C1612.57,-279.81 1616.38,-270.3 1619.88,-261.55"/>
+<polygon fill="black" stroke="black" points="1623.19,-262.69 1623.66,-252.1 1616.69,-260.09 1623.19,-262.69"/>
+</g>
+<!-- [root] output.alb_hostname -->
+<g id="node31" class="node">
+<title>[root] output.alb_hostname</title>
+<polygon fill="none" stroke="black" points="744.5,-468 616.5,-468 616.5,-432 750.5,-432 750.5,-462 744.5,-468"/>
+<polyline fill="none" stroke="black" points="744.5,-468 744.5,-462 "/>
+<polyline fill="none" stroke="black" points="750.5,-462 744.5,-462 "/>
+<text text-anchor="middle" x="683.5" y="-446.3" font-family="Times New Roman,serif" font-size="14.00">output.alb_hostname</text>
+</g>
+<!-- [root] output.alb_hostname&#45;&gt;[root] aws_alb.main (expand) -->
+<g id="edge62" class="edge">
+<title>[root] output.alb_hostname&#45;&gt;[root] aws_alb.main (expand)</title>
+<path fill="none" stroke="black" d="M625.43,-431.96C608.27,-423.92 591.44,-412.37 581.5,-396 568.99,-375.41 582.73,-350.23 597.41,-331.91"/>
+<polygon fill="black" stroke="black" points="600.31,-333.9 604.13,-324.02 594.98,-329.37 600.31,-333.9"/>
+</g>
+<!-- [root] var.aws_region -->
+<g id="node36" class="node">
+<title>[root] var.aws_region</title>
+<polygon fill="none" stroke="black" points="801,-36 706,-36 706,0 807,0 807,-30 801,-36"/>
+<polyline fill="none" stroke="black" points="801,-36 801,-30 "/>
+<polyline fill="none" stroke="black" points="807,-30 801,-30 "/>
+<text text-anchor="middle" x="756.5" y="-14.3" font-family="Times New Roman,serif" font-size="14.00">var.aws_region</text>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]&#45;&gt;[root] var.aws_region -->
+<g id="edge68" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;]&#45;&gt;[root] var.aws_region</title>
+<path fill="none" stroke="black" d="M756.5,-71.7C756.5,-63.98 756.5,-54.71 756.5,-46.11"/>
+<polygon fill="black" stroke="black" points="760,-46.1 756.5,-36.1 753,-46.1 760,-46.1"/>
+</g>
+<!-- [root] var.ecs_auto_scale_role_name -->
+<g id="node38" class="node">
+<title>[root] var.ecs_auto_scale_role_name</title>
+<polygon fill="none" stroke="black" points="1448.5,-684 1266.5,-684 1266.5,-648 1454.5,-648 1454.5,-678 1448.5,-684"/>
+<polyline fill="none" stroke="black" points="1448.5,-684 1448.5,-678 "/>
+<polyline fill="none" stroke="black" points="1454.5,-678 1448.5,-678 "/>
+<text text-anchor="middle" x="1360.5" y="-662.3" font-family="Times New Roman,serif" font-size="14.00">var.ecs_auto_scale_role_name</text>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup) -->
+<g id="node44" class="node">
+<title>[root] meta.count&#45;boundary (EachMode fixup)</title>
+<ellipse fill="none" stroke="black" cx="941.5" cy="-738" rx="180.87" ry="18"/>
+<text text-anchor="middle" x="941.5" y="-734.3" font-family="Times New Roman,serif" font-size="14.00">[root] meta.count&#45;boundary (EachMode fixup)</text>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_log_stream.cb_log_stream (expand) -->
+<g id="edge55" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_log_stream.cb_log_stream (expand)</title>
+<path fill="none" stroke="black" d="M815.55,-725.09C685.04,-712.74 481.4,-693.48 344.81,-680.56"/>
+<polygon fill="black" stroke="black" points="344.97,-677.06 334.69,-679.6 344.31,-684.03 344.97,-677.06"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand) -->
+<g id="edge56" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand)</title>
+<path fill="none" stroke="black" d="M970.96,-720.23C987.3,-710.93 1007.83,-699.25 1025.49,-689.2"/>
+<polygon fill="black" stroke="black" points="1027.46,-692.1 1034.42,-684.12 1024,-686.02 1027.46,-692.1"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand) -->
+<g id="edge57" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand)</title>
+<path fill="none" stroke="black" d="M897.42,-720.41C871.38,-710.61 838.18,-698.12 810.44,-687.68"/>
+<polygon fill="black" stroke="black" points="811.47,-684.33 800.88,-684.08 809.01,-690.88 811.47,-684.33"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_route.internet_access (expand) -->
+<g id="edge58" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_route.internet_access (expand)</title>
+<path fill="none" stroke="black" d="M845.31,-722.69C779.84,-712.77 690.97,-698.98 602.67,-684"/>
+<polygon fill="black" stroke="black" points="603.18,-680.54 592.74,-682.31 602.01,-687.44 603.18,-680.54"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_route_table_association.private (expand) -->
+<g id="edge59" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] aws_route_table_association.private (expand)</title>
+<path fill="none" stroke="black" d="M815.68,-725.04C662.47,-710.36 423.41,-687.03 419.5,-684 400.52,-669.32 392.46,-642.54 389.03,-622.18"/>
+<polygon fill="black" stroke="black" points="392.49,-621.63 387.63,-612.22 385.55,-622.61 392.49,-621.63"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] output.alb_hostname -->
+<g id="edge60" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] output.alb_hostname</title>
+<path fill="none" stroke="black" d="M1082.17,-726.68C1141.53,-719.12 1201.18,-706.15 1219.5,-684 1229.7,-671.67 1225.72,-662.74 1219.5,-648 1175.9,-544.76 1118.6,-540.1 1012.5,-504 967.15,-488.57 842.81,-470.93 760.65,-460.39"/>
+<polygon fill="black" stroke="black" points="760.96,-456.9 750.59,-459.11 760.07,-463.84 760.96,-456.9"/>
+</g>
+<!-- [root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] var.ecs_auto_scale_role_name -->
+<g id="edge61" class="edge">
+<title>[root] meta.count&#45;boundary (EachMode fixup)&#45;&gt;[root] var.ecs_auto_scale_role_name</title>
+<path fill="none" stroke="black" d="M1029.59,-722.28C1095.71,-711.24 1186.46,-696.08 1256.21,-684.42"/>
+<polygon fill="black" stroke="black" points="1257.05,-687.83 1266.34,-682.73 1255.9,-680.93 1257.05,-687.83"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close) -->
+<g id="node45" class="node">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)</title>
+<ellipse fill="none" stroke="black" cx="510.5" cy="-738" rx="232.86" ry="18"/>
+<text text-anchor="middle" x="510.5" y="-734.3" font-family="Times New Roman,serif" font-size="14.00">[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)</text>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_log_stream.cb_log_stream (expand) -->
+<g id="edge63" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_log_stream.cb_log_stream (expand)</title>
+<path fill="none" stroke="black" d="M439.22,-720.85C393.79,-710.56 334.69,-697.17 286.78,-686.32"/>
+<polygon fill="black" stroke="black" points="287.26,-682.84 276.73,-684.04 285.71,-689.67 287.26,-682.84"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand) -->
+<g id="edge64" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_high (expand)</title>
+<path fill="none" stroke="black" d="M626.3,-722.37C711.6,-711.59 828.18,-696.86 919.65,-685.3"/>
+<polygon fill="black" stroke="black" points="920.35,-688.74 929.83,-684.02 919.47,-681.8 920.35,-688.74"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand) -->
+<g id="edge65" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_cloudwatch_metric_alarm.service_cpu_low (expand)</title>
+<path fill="none" stroke="black" d="M568.25,-720.5C603.44,-710.44 648.64,-697.53 685.82,-686.91"/>
+<polygon fill="black" stroke="black" points="686.92,-690.23 695.58,-684.12 685,-683.5 686.92,-690.23"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_route.internet_access (expand) -->
+<g id="edge66" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_route.internet_access (expand)</title>
+<path fill="none" stroke="black" d="M510.5,-719.7C510.5,-711.98 510.5,-702.71 510.5,-694.11"/>
+<polygon fill="black" stroke="black" points="514,-694.1 510.5,-684.1 507,-694.1 514,-694.1"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_route_table_association.private (expand) -->
+<g id="edge67" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)&#45;&gt;[root] aws_route_table_association.private (expand)</title>
+<path fill="none" stroke="black" d="M435.37,-720.83C416.26,-712.96 397.91,-701.29 386.5,-684 374.58,-665.94 375.7,-641 379.16,-622.11"/>
+<polygon fill="black" stroke="black" points="382.59,-622.84 381.26,-612.33 375.74,-621.37 382.59,-622.84"/>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close) -->
+<g id="node46" class="node">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close)</title>
+<ellipse fill="none" stroke="black" cx="1534.5" cy="-522" rx="248.86" ry="18"/>
+<text text-anchor="middle" x="1534.5" y="-518.3" font-family="Times New Roman,serif" font-size="14.00">[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close)</text>
+</g>
+<!-- [root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close)&#45;&gt;[root] data.template_file.cb_app (expand) -->
+<g id="edge69" class="edge">
+<title>[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close)&#45;&gt;[root] data.template_file.cb_app (expand)</title>
+<path fill="none" stroke="black" d="M1539.95,-503.85C1551.76,-466.68 1579.8,-378.44 1593.98,-333.82"/>
+<polygon fill="black" stroke="black" points="1597.33,-334.82 1597.02,-324.23 1590.66,-332.7 1597.33,-334.82"/>
+</g>
+<!-- [root] root -->
+<g id="node47" class="node">
+<title>[root] root</title>
+<ellipse fill="none" stroke="black" cx="941.5" cy="-810" rx="49.29" ry="18"/>
+<text text-anchor="middle" x="941.5" y="-806.3" font-family="Times New Roman,serif" font-size="14.00">[root] root</text>
+</g>
+<!-- [root] root&#45;&gt;[root] meta.count&#45;boundary (EachMode fixup) -->
+<g id="edge70" class="edge">
+<title>[root] root&#45;&gt;[root] meta.count&#45;boundary (EachMode fixup)</title>
+<path fill="none" stroke="black" d="M941.5,-791.7C941.5,-783.98 941.5,-774.71 941.5,-766.11"/>
+<polygon fill="black" stroke="black" points="945,-766.1 941.5,-756.1 938,-766.1 945,-766.1"/>
+</g>
+<!-- [root] root&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close) -->
+<g id="edge71" class="edge">
+<title>[root] root&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/aws&quot;] (close)</title>
+<path fill="none" stroke="black" d="M897.4,-801.84C831.64,-791.16 705.96,-770.74 615.66,-756.08"/>
+<polygon fill="black" stroke="black" points="616.09,-752.6 605.66,-754.46 614.97,-759.51 616.09,-752.6"/>
+</g>
+<!-- [root] root&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close) -->
+<g id="edge72" class="edge">
+<title>[root] root&#45;&gt;[root] provider[&quot;registry.terraform.io/hashicorp/template&quot;] (close)</title>
+<path fill="none" stroke="black" d="M987.49,-803.27C1100.96,-788.32 1390.33,-745.04 1463.5,-684 1504.74,-649.6 1522.82,-586.51 1530.11,-550.37"/>
+<polygon fill="black" stroke="black" points="1533.63,-550.55 1532.03,-540.08 1526.75,-549.26 1533.63,-550.55"/>
+</g>
+</g>
+</svg>
diff --git a/devops/logs.tf b/devops/logs.tf
new file mode 100644
index 00000000..308336ef
--- /dev/null
+++ b/devops/logs.tf
@@ -0,0 +1,14 @@
+# Set up CloudWatch group and log stream and retain logs for 30 days
+resource "aws_cloudwatch_log_group" "cb_log_group" {
+  name              = "/ecs/cb-app"
+  retention_in_days = 30
+
+  tags = {
+    Name = "cb-log-group"
+  }
+}
+
+resource "aws_cloudwatch_log_stream" "cb_log_stream" {
+  name           = "cb-log-stream"
+  log_group_name = aws_cloudwatch_log_group.cb_log_group.name
+}
diff --git a/devops/network.tf b/devops/network.tf
new file mode 100644
index 00000000..cd0d575e
--- /dev/null
+++ b/devops/network.tf
@@ -0,0 +1,66 @@
+data "aws_availability_zones" "available" {
+}
+
+resource "aws_vpc" "main" {
+  cidr_block = "172.17.0.0/16"
+}
+
+# Create var.az_count private subnets, each in a different AZ
+resource "aws_subnet" "private" {
+  count             = var.az_count
+  cidr_block        = cidrsubnet(aws_vpc.main.cidr_block, 8, count.index)
+  availability_zone = data.aws_availability_zones.available.names[count.index]
+  vpc_id            = aws_vpc.main.id
+}
+
+# Create var.az_count public subnets, each in a different AZ
+resource "aws_subnet" "public" {
+  count                   = var.az_count
+  cidr_block              = cidrsubnet(aws_vpc.main.cidr_block, 8, var.az_count + count.index)
+  availability_zone       = data.aws_availability_zones.available.names[count.index]
+  vpc_id                  = aws_vpc.main.id
+  map_public_ip_on_launch = true
+}
+
+# Internet Gateway for the public subnet
+resource "aws_internet_gateway" "gw" {
+  vpc_id = aws_vpc.main.id
+}
+
+# Route the public subnet traffic through the IGW
+resource "aws_route" "internet_access" {
+  route_table_id         = aws_vpc.main.main_route_table_id
+  destination_cidr_block = "0.0.0.0/0"
+  gateway_id             = aws_internet_gateway.gw.id
+}
+
+# Create a NAT gateway with an Elastic IP for each private subnet to get internet connectivity
+resource "aws_eip" "gw" {
+  count      = var.az_count
+  vpc        = true
+  depends_on = [aws_internet_gateway.gw]
+}
+
+resource "aws_nat_gateway" "gw" {
+  count         = var.az_count
+  subnet_id     = element(aws_subnet.public.*.id, count.index)
+  allocation_id = element(aws_eip.gw.*.id, count.index)
+}
+
+# Create a new route table for the private subnets, make it route non-local traffic through the NAT gateway to the internet
+resource "aws_route_table" "private" {
+  count  = var.az_count
+  vpc_id = aws_vpc.main.id
+
+  route {
+    cidr_block     = "0.0.0.0/0"
+    nat_gateway_id = element(aws_nat_gateway.gw.*.id, count.index)
+  }
+}
+
+# Explicitly associate the newly created route tables to the private subnets (so they don't default to the main route table)
+resource "aws_route_table_association" "private" {
+  count          = var.az_count
+  subnet_id      = element(aws_subnet.private.*.id, count.index)
+  route_table_id = element(aws_route_table.private.*.id, count.index)
+}
diff --git a/devops/outputs.tf b/devops/outputs.tf
new file mode 100644
index 00000000..0d8c93d2
--- /dev/null
+++ b/devops/outputs.tf
@@ -0,0 +1,3 @@
+output "alb_hostname" {
+  value = aws_alb.main.dns_name
+}
diff --git a/devops/provider.tf b/devops/provider.tf
new file mode 100644
index 00000000..0e636fdb
--- /dev/null
+++ b/devops/provider.tf
@@ -0,0 +1,3 @@
+provider "aws" {
+  region                  = var.aws_region
+}
diff --git a/devops/roles.tf b/devops/roles.tf
new file mode 100644
index 00000000..29bfd9ff
--- /dev/null
+++ b/devops/roles.tf
@@ -0,0 +1,26 @@
+data "aws_iam_policy_document" "ecs_task_execution_role" {
+  version = "2012-10-17"
+  statement {
+    sid = ""
+    effect = "Allow"
+    actions = ["sts:AssumeRole"]
+
+    principals {
+      type        = "Service"
+      identifiers = ["ecs-tasks.amazonaws.com"]
+    }
+  }
+}
+
+# ECS task execution role
+resource "aws_iam_role" "ecs_task_execution_role" {
+  name               = var.ecs_task_execution_role_name
+  assume_role_policy = data.aws_iam_policy_document.ecs_task_execution_role.json
+}
+
+# ECS task execution role policy attachment
+resource "aws_iam_role_policy_attachment" "ecs_task_execution_role" {
+  role       = aws_iam_role.ecs_task_execution_role.name
+  policy_arn = "arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy"
+}
+
diff --git a/devops/security.tf b/devops/security.tf
new file mode 100644
index 00000000..4aad0894
--- /dev/null
+++ b/devops/security.tf
@@ -0,0 +1,41 @@
+# ALB Security Group: Edit to restrict access to the application
+resource "aws_security_group" "lb" {
+  name        = "jms-load-balancer-security-group"
+  description = "controls access to the ALB"
+  vpc_id      = aws_vpc.main.id
+
+  ingress {
+    protocol    = "tcp"
+    from_port   = var.app_port
+    to_port     = var.app_port
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  egress {
+    protocol    = "-1"
+    from_port   = 0
+    to_port     = 0
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+}
+
+# Traffic to the ECS cluster should only come from the ALB
+resource "aws_security_group" "ecs_tasks" {
+  name        = "jms-ecs-tasks-security-group"
+  description = "allow inbound access from the ALB only"
+  vpc_id      = aws_vpc.main.id
+
+  ingress {
+    protocol        = "tcp"
+    from_port       = var.app_port
+    to_port         = var.app_port
+    security_groups = [aws_security_group.lb.id]
+  }
+
+  egress {
+    protocol    = "-1"
+    from_port   = 0
+    to_port     = 0
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+}
diff --git a/devops/templates/ecs/cb_app.json.tpl b/devops/templates/ecs/cb_app.json.tpl
new file mode 100644
index 00000000..36231a15
--- /dev/null
+++ b/devops/templates/ecs/cb_app.json.tpl
@@ -0,0 +1,24 @@
+[
+  {
+    "name": "jms-app",
+    "image": "${app_image}:${tag}",
+    "cpu": ${fargate_cpu},
+    "memory": ${fargate_memory},
+    "networkMode": "awsvpc",
+    "logConfiguration": {
+        "logDriver": "awslogs",
+        "options": {
+          "awslogs-group": "/ecs/cb-app",
+          "awslogs-region": "${aws_region}",
+          "awslogs-stream-prefix": "ecs"
+        }
+    },
+    "portMappings": [
+      {
+        "containerPort": ${app_port},
+        "hostPort": ${app_port}
+      }
+    ]
+  }
+]
+
diff --git a/devops/variables.tf b/devops/variables.tf
new file mode 100644
index 00000000..d2d8fb05
--- /dev/null
+++ b/devops/variables.tf
@@ -0,0 +1,45 @@
+variable "aws_region" {
+  description = "The AWS region things are created in"
+  default     = "ap-south-1"
+}
+
+variable "ecs_task_execution_role_name" {
+  description = "ECS task execution role name"
+  default = "myEcsTaskExecutionRole"
+}
+
+variable "ecs_auto_scale_role_name" {
+  description = "ECS auto scale role Name"
+  default = "myEcsAutoScaleRole"
+}
+
+variable "az_count" {
+  description = "Number of AZs to cover in a given region"
+  default     = "2"
+}
+
+variable "app_port" {
+  description = "Port exposed by the docker image to redirect traffic to"
+  default     = 8080
+}
+
+variable "app_count" {
+  description = "Number of docker containers to run"
+  default     = 2
+}
+
+variable "health_check_path" {
+  default = "/"
+}
+
+variable "fargate_cpu" {
+  description = "Fargate instance CPU units to provision (1 vCPU = 1024 CPU units)"
+  default     = "1024"
+}
+
+variable "fargate_memory" {
+  description = "Fargate instance memory to provision (in MiB)"
+  default     = "2048"
+}
+variable "tag" {
+}
diff --git a/devops/versions.tf b/devops/versions.tf
new file mode 100644
index 00000000..d9b6f790
--- /dev/null
+++ b/devops/versions.tf
@@ -0,0 +1,3 @@
+terraform {
+  required_version = ">= 0.12"
+}