Skip to content

dojo360

Optum Dojo quick index (skills + workflow templates)

IDE:
claude
codex
vscode
Version:
0.0.0

Overview

Use Optum's official terraform modules to build secure, compliant, and scalable infrastructure on AWS, Azure, and GCP. The modules are designed to follow Optum's best practices and standards for security, compliance, and operational excellence. Each module is versioned and maintained by the Dojo360 team to ensure it stays up-to-date with the latest cloud provider features and Optum requirements. These modules have been intentionally designed for US Healthcare HiTrust compliance and need to be utilized to ensure your infrastructure is compliant with Optum's standards.

Gain a high level understanding of Site Navigation, Github for Dojo360 sections below so you understand how to find documentation and code for Dojo360.

Lastly plan what you need to build utilizing the Dojo360 resources 1 - explore the site, explore github for Dojo360 to harden your understanding of the resources available to you. 2 - create a TODO list of all modules and workflows and documentation and github repositories you need to review and research to achieve your goal. 3 - Incrementally research a modules or workflow with the resources available to you, find and locate what you need to understand. 4 - Once you have a good understanding of the modules and workflows you need to use, start building your terraform code and github workflows using the documentation and github repositories as a reference via Dojo360. 5 - Verify what you build is using Dojo360 modules and workflows correctly, and that you didn't create or guess or use any aws or azure or gcp native modules that are not in Dojo360.

Site Navigation

To review all content available on Dojo360, use fetch to pull https://dojo360.optum.com/content.json.

This will give you a comprehensive list of all the content available on the site, including modules, documentation, and other resources. You can then use this information to navigate the site and find the specific content you need for your project.

The site is organized into four main sections:

  • Foundations
  • Azure
  • AWS
  • GCP

The Foundations section, for Modules, is located at https://dojo360.optum.com/foundations/modules/terraform/index.html. Review it to understand the design principles and best practices for using the Dojo360 terraform modules.

The Azure, AWS, and GCP sections contain the actual terraform modules for each cloud provider, organized by service category (e.g. Compute, Storage, Networking, etc.).

For example:

AWS > Compute > Elastic Compute Cloud https://dojo360.optum.com/aws/compute/ec2/build/index.html

Instance Module: https://dojo360.optum.com/aws/compute/ec2/build/ec2/profiles/instance/index.html

Each module contains the following sections:

  • Argument Reference - a list of variables and their descriptions for the module.
  • Usage - example code snippets that show how to use the module in a Terraform configuration.

Each module has a github repository linked within a module card (Change log> Upgrade> Example> Github).

The Github link will look like:

<a href="https://github.com/dojo360/aws-ec2/tree/main/examples/instance/default" target="_blank" class="no-text-decor font-strong" title="GitHub Repository - AZU_GHEC_USERS group required to access GitHub">GitHub</a>

Github for Dojo360

You can review the github organization for Dojo360 at the following link, which contains all the repositories for the terraform modules and github workflows:

https://github.com/dojo360

Dojo360 Module repositories are always prefaced with "aws-", "azure-", or "gcp-" followed by the service name. There are also Optum specific repositories that encapsulate functionality specific to Optum. For instance, the optum-ips repository contains terraform outputs that provide the IP address ranges for Optum's network, which can be used in security group rules and other network configurations.

There is also a standalone certificate repository called venafi for managing TLS certificates using Venafi, which is the certificate management solution used by Optum. This repository contains terraform modules and github workflows for provisioning and managing TLS certificates in a secure and compliant manner.

Modules

You can explore the module in github like this:

# List available releases
gh release list --repo dojo360/aws-ec2

# View specific release details
gh release view vxxx.x.x --repo dojo360/aws-ec2

# Browse repository
gh repo view dojo360/aws-ec2 --web

Or use another github / graph based tool installed or plugin.

Versioning

Dojo360 aligns the Module versions with the Terraform version they were tested against. So version 114.x.x of the modules are tested against Terraform 1.14. This means that if you are using Terraform 1.14, you should use version 114.x.x of the modules to ensure compatibility and support. Dojo360 provides support for the current latest plus one major.minor version behind. For example, if the latest Terraform version is 1.14, Dojo360 will support modules tested against Terraform 1.14 and the previous major release. Dojo360 does sometimes skip Terraform versions if there are no significant changes or if the modules are already compatible with the latest Terraform version. Always check the release notes and documentation for each module to understand the specific Terraform versions they are compatible with.

GitHub Workflow Dojo Skills

Use these when the task is “set up CI/CD”, “promotion”, “pipeline scaffolding”, or “how do I structure workflows for X”.

Infrastructure Skill

Use these when the task is “build AWS infrastructure using Dojo modules” (networking, compute, security, data, etc.).