From 912405a8f3f6b831b9abcf6e16a9372160e7ce32 Mon Sep 17 00:00:00 2001
From: Saumit <justsaumit@protonmail.com>
Date: Sun, 28 Sep 2025 02:25:37 +0530
Subject: vpc: Adding vpc module

---
 astroshop-terraform/README.md | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 astroshop-terraform/README.md

(limited to 'astroshop-terraform/README.md')

diff --git a/astroshop-terraform/README.md b/astroshop-terraform/README.md
new file mode 100644
index 0000000..5cee086
--- /dev/null
+++ b/astroshop-terraform/README.md
@@ -0,0 +1,28 @@
+# Detailed Breakdown of Terraform Configuration
+
+## 0. BACKEND (3 resources) - State Management
+
+### 1. **S3 Bucket: `astroshop-terraform-state-647242312368`**
+**Purpose:** Remote state storage
+- Stores your Terraform state file (tracks all infrastructure you create)
+- Named with your AWS account ID to ensure global uniqueness
+- `prevent_destroy = true` prevents accidental deletion
+
+**Why it matters:** Without this, Terraform state would be stored locally, making it:
+- Hard to collaborate (other team members can't see changes)
+- Risky (if your laptop dies, you lose track of infrastructure)
+
+### 2. **S3 Bucket Versioning**
+**Purpose:** State file backup and rollback
+- Keeps version history of your state file
+- Lets you recover from mistakes: `terraform state pull <version>`
+- If you accidentally corrupt state, you can restore from an older version
+
+### 3. **S3 Bucket Server-Side Encryption (AES256)**
+**Purpose:** Security
+- Encrypts state file at rest
+- Your state contains sensitive info (passwords, API keys, database credentials)
+- AES256 is AWS-managed encryption (free, automatic)
+
+---
+
-- 
cgit v1.2.3