-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathvariables.tf
101 lines (86 loc) · 2.8 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
variable "access_entries" {
description = "Map of access entries to add to the cluster."
type = map(object({
kubernetes_groups = optional(list(string))
principal_arn = string
policy_associations = optional(map(object({
policy_arn = string
access_scope = object({
namespaces = optional(list(string))
type = string
})
})))
}))
default = {}
}
variable "aws_secretsmanager_name" {
description = "The name of the AWS Secrets Manager secret to fetch, which contains IDP configuration."
type = string
default = "wayfinder-secrets"
}
variable "availability_zones" {
description = "List of availability zones to deploy into."
type = list(string)
default = ["eu-west-2a", "eu-west-2b", "eu-west-2c"]
}
variable "clusterissuer_email" {
description = "The email address to use for the cert-manager cluster issuer."
type = string
}
variable "create_localadmin_user" {
description = "Whether to create a localadmin user for access to the Wayfinder Portal and API."
type = bool
default = false
}
variable "disable_internet_access" {
description = "Whether to disable internet access for EKS and the Wayfinder ingress controller."
type = bool
default = false
}
variable "disable_local_login" {
description = "Whether to disable local login for Wayfinder. Note: An IDP must be configured within Wayfinder, otherwise you will not be able to log in."
type = bool
default = false
}
variable "dns_zone_name" {
description = "The local DNS zone to use (e.g. wayfinder.example.com)."
type = string
}
variable "environment" {
description = "The environment name we are provisioning."
type = string
default = "production"
}
variable "idp_provider" {
description = "The Identity Provider type to configure for Wayfinder (supported: generic, aad)."
type = string
default = "generic"
validation {
condition = contains(["generic", "aad"], var.idp_provider)
error_message = "idp_provider must be one of: generic, aad"
}
}
variable "wayfinder_instance_id" {
description = "The instance ID to use for Wayfinder."
type = string
}
variable "tags" {
description = "Tags to apply to all resources."
type = map(any)
default = {}
}
variable "vpc_cidr" {
description = "CIDR block for the Wayfinder VPC."
type = string
default = "10.0.0.0/21"
}
variable "vpc_private_subnets" {
description = "List of private subnets in the Wayfinder VPC."
type = list(string)
default = ["10.0.0.0/24", "10.0.1.0/24", "10.0.2.0/24"]
}
variable "vpc_public_subnets" {
description = "List of public subnets in the Wayfinder VPC."
type = list(string)
default = ["10.0.3.0/24", "10.0.4.0/24", "10.0.5.0/24"]
}