-
Notifications
You must be signed in to change notification settings - Fork 151
/
Copy pathvariables.tf
87 lines (75 loc) · 2.45 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
variable "databricks_account_client_id" {
type = string
description = "Application ID of account-level service principal"
}
variable "databricks_account_client_secret" {
type = string
description = "Client secret of account-level service principal"
}
variable "databricks_account_id" {
type = string
description = "Databricks Account ID"
}
variable "region" {
type = string
description = "AWS region to deploy to"
default = "ap-southeast-1"
}
#cmk
variable "cmk_admin" {
type = string
default = "arn:aws:iam::026655378770:user/hao"
}
variable "tags" {
default = {}
type = map(string)
description = "Optional tags to add to created resources"
}
variable "vpc_cidr" {
default = "10.109.0.0/17"
}
variable "public_subnets_cidr" {
type = list(string)
default = ["10.109.2.0/23"]
}
variable "privatelink_subnets_cidr" {
type = list(string)
default = ["10.109.4.0/23"]
}
variable "workspace_vpce_service" {
type = string
default = "com.amazonaws.vpce.ap-southeast-1.vpce-svc-02535b257fc253ff4" // for workspace vpce, ap-southeast-1 only
}
variable "relay_vpce_service" {
type = string
default = "com.amazonaws.vpce.ap-southeast-1.vpce-svc-0557367c6fc1a0c5c" // for relay vpce, ap-southeast-1 only
}
variable "workspace_1_config" {
default = {
private_subnet_pair = { subnet1_cidr = "10.109.6.0/23", subnet2_cidr = "10.109.8.0/23" }
workspace_name = "test-workspace-1"
prefix = "ws1" // prefix decides subnets name
region = "ap-southeast-1"
root_bucket_name = "test-workspace-1-rootbucket"
block_list = ["58.133.93.159"]
allow_list = ["65.184.145.97"] // if allow_list empty, all public IP not blocked by block_list are allowed
tags = {
"Name" = "test-workspace-1-tags",
"Env" = "test-ws-1"
}
}
}
variable "workspace_2_config" {
default = {
private_subnet_pair = { subnet1_cidr = "10.109.10.0/23", subnet2_cidr = "10.109.12.0/23" }
workspace_name = "test-workspace-2"
prefix = "ws2" // prefix decides subnets name
region = "ap-southeast-1"
root_bucket_name = "test-workspace-2-rootbucket"
block_list = ["54.112.179.135", "195.78.164.130"]
allow_list = ["65.184.145.97"] // if allow_list empty, all public IP not blocked by block_list are allowed
tags = {
"Name" = "test-workspace-2-tags"
}
}
}