-
Notifications
You must be signed in to change notification settings - Fork 23
/
Copy pathvariables.tf
215 lines (170 loc) · 6.13 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
variable "route53_zone" {
description = "Zone for Route 53 records"
}
variable "external_certificate_arn" {
description = "ARN for the certificate to use for the external LB"
}
variable "internal_certificate_arn" {
description = "ARN for the certificate to use for the internal LB"
}
variable "traefik_external_base_domain" {
description = "Domain to expose the external Traefik load balancer"
}
variable "traefik_internal_base_domain" {
description = "Domain to expose the external Traefik load balancer"
}
variable "traefik_ui_domain" {
description = "Domain to access Traefik UI"
}
variable "vpc_id" {
description = "ID of the VPC to deploy the LB to"
}
variable "lb_external_subnets" {
description = "List of subnets to deploy the external LB to"
type = list(string)
}
variable "lb_internal_subnets" {
description = "List of subnets to deploy the internal LB to"
type = list(string)
}
variable "nomad_clients_node_class" {
description = "Job constraint Nomad Client Node Class name"
}
variable "nomad_clients_external_security_group" {
description = "The security group of the nomad clients that the external LB will be able to connect to"
}
variable "nomad_clients_internal_security_group" {
description = "The security group of the nomad clients that the internal LB will be able to connect to"
}
variable "external_nomad_clients_asg" {
description = "The Nomad Clients Autoscaling group to attach the external load balancer to"
}
variable "internal_nomad_clients_asg" {
description = "The Nomad Clients Autoscaling group to attach the internal load balancer to"
}
#########################################
# Optional Variables
#########################################
variable "external_enable_http" {
description = "Set to true to enable external HTTP listener that redirects to HTTPS. Defaults to true"
default = true
}
variable "external_lb_name" {
description = "Name of the external Nomad load balancer"
default = "traefik-external"
}
variable "external_drop_invalid_header_fields" {
description = "Set to true for external Nomad load balancer to drop invalid header fields"
default = true
}
variable "internal_enable_http" {
description = "Set to true to enable internal HTTP listener that redirects to HTTPS. Defaults to true"
default = true
}
variable "internal_lb_name" {
description = "Name of the external Nomad load balancer"
default = "traefik-internal"
}
variable "internal_drop_invalid_header_fields" {
description = "Set to true for internal Nomad load balancer to drop invalid header fields"
default = true
}
variable "tags" {
description = "A map of tags to add to all resources"
default = {
Terraform = "true"
Environment = "development"
}
}
variable "external_lb_incoming_cidr" {
description = "A list of CIDR-formatted IP address ranges from which the external Load balancer is allowed to listen to"
type = list(string)
default = ["0.0.0.0/0"]
}
variable "internal_lb_incoming_cidr" {
description = "A list of CIDR-formatted IP address ranges from which the internal load balancer is allowed to listen to"
type = list(string)
default = []
}
variable "deregistration_delay" {
description = "Time before an unhealthy Elastic Load Balancer target becomes removed"
default = 60
}
variable "healthy_threshold" {
description = "The number of consecutive health checks successes required before considering an unhealthy target healthy (2-10)."
default = 2
}
variable "timeout" {
description = "The amount of time, in seconds, during which no response means a failed health check (2-60 seconds)."
default = 5
}
variable "unhealthy_threshold" {
description = "The number of consecutive health check failures required before considering a target unhealthy (2-10)."
default = 2
}
variable "interval" {
description = "The approximate amount of time, in seconds, between health checks of an individual target. Minimum value 5 seconds, Maximum value 300 seconds."
default = 30
}
variable "elb_ssl_policy" {
description = "ELB SSL policy for HTTPs listeners. See https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html"
default = "ELBSecurityPolicy-FS-1-2-Res-2020-10"
}
variable "traefik_version" {
description = "Docker image tag of the version of Traefik to run"
default = "v1.7.12-alpine"
}
variable "traefik_priority" {
description = "Priority of the Nomad job for Traefik. See https://www.nomadproject.io/docs/job-specification/job.html#priority"
default = 50
}
variable "traefik_consul_prefix" {
description = "Prefix on Consul to store Traefik configuration to"
default = "traefik"
}
variable "traefik_consul_catalog_prefix" {
description = "Prefix for Consul catalog tags for Traefik"
default = "traefik"
}
variable "traefik_count" {
description = "Number of copies of Traefik to run"
default = 3
}
variable "additional_docker_config" {
description = "Additional HCL to be added to the configuration for the Docker driver. Refer to the template Jobspec for what is already defined"
default = ""
}
variable "log_json" {
description = "Log in JSON format"
default = false
}
variable "access_log_enable" {
description = "Enable access logging"
default = true
}
variable "access_log_json" {
description = "Log access in JSON"
default = false
}
variable "lb_external_access_log" {
description = "Log External Traefik LB access to a S3 bucket"
default = false
}
variable "lb_external_access_log_bucket" {
description = "S3 bucket to log access to the External Traefik LB to"
}
variable "lb_external_access_log_prefix" {
description = "Prefix in the S3 bucket to log External Traefik LB access"
default = ""
}
variable "lb_internal_access_log" {
description = "Log internal Traefik LB access to a S3 bucket"
default = false
}
variable "lb_internal_access_log_bucket" {
description = "S3 bucket to log access to the internal Traefik LB to"
}
variable "lb_internal_access_log_prefix" {
description = "Prefix in the S3 bucket to log internal Traefik LB access"
default = ""
}