forked from wandb/terraform-aws-wandb
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.tf
261 lines (220 loc) · 7.62 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
##########################################
# Common #
##########################################
variable "namespace" {
type = string
description = "String used for prefix resources."
}
variable "deletion_protection" {
description = "If the instance should have deletion protection enabled. The database / S3 can't be deleted when this value is set to `true`."
type = bool
default = true
}
variable "use_internal_queue" {
type = bool
default = false
}
##########################################
# Database #
##########################################
variable "database_engine_version" {
description = "Version for MySQL Auora"
type = string
default = "8.0.mysql_aurora.3.01.0"
validation {
condition = contains(["5.7", "8.0.mysql_aurora.3.01.0"], var.database_engine_version)
error_message = "We only support MySQL: \"5.7\"; \"8.0.mysql_aurora.3.01.0\"."
}
}
variable "database_instance_class" {
description = "Instance type to use by database master instance."
type = string
default = "db.r5.large"
}
variable "database_snapshot_identifier" {
description = "Specifies whether or not to create this cluster from a snapshot. You can use either the name or ARN when specifying a DB cluster snapshot, or the ARN when specifying a DB snapshot"
type = string
default = null
}
##########################################
# DNS #
##########################################
variable "public_access" {
type = bool
default = false
description = "Is this instance accessable a public domain."
}
variable "external_dns" {
type = bool
default = false
description = "Using external DNS. A `subdomain` must also be specified if this value is true."
}
# Sometimes domain name and zone name dont match, so lets explicitly ask for
# both. Also is just life easier to have both even though in most cause it may
# be redundant info.
# https://github.com/hashicorp/terraform-aws-terraform-enterprise/pull/41#issuecomment-563501858
variable "zone_id" {
type = string
description = "Domain for creating the Weights & Biases subdomain on."
}
variable "domain_name" {
type = string
description = "Domain for accessing the Weights & Biases UI."
}
variable "subdomain" {
type = string
default = null
description = "Subdomain for accessing the Weights & Biases UI. Default creates record at Route53 Route."
}
##########################################
# Load Balancer #
##########################################
variable "ssl_policy" {
type = string
default = "ELBSecurityPolicy-FS-1-2-Res-2020-10"
description = "SSL policy to use on ALB listener"
}
variable "acm_certificate_arn" {
type = string
default = null
description = "The ARN of an existing ACM certificate."
}
variable "allowed_inbound_cidr" {
type = list(string)
default = []
description = "Allow HTTP(S) traffic to W&B. Defaults to no connections."
}
variable "allowed_inbound_ipv6_cidr" {
type = list(string)
default = []
description = "Allow HTTP(S) traffic to W&B. Defaults to no connections."
}
##########################################
# KMS #
##########################################
variable "kms_key_alias" {
type = string
description = "KMS key alias for AWS KMS Customer managed key."
default = null
}
variable "kms_key_deletion_window" {
type = number
description = "Duration in days to destroy the key after it is deleted. Must be between 7 and 30 days."
default = 7
}
variable "kms_key_policy" {
type = string
description = "The policy that will define the permissions for the kms key."
default = ""
}
##########################################
# Network #
##########################################
variable "create_vpc" {
type = bool
description = "Boolean indicating whether to deploy a VPC (true) or not (false)."
default = true
}
variable "network_id" {
default = ""
description = "The identity of the VPC in which resources will be deployed."
type = string
}
variable "network_private_subnets" {
default = []
description = "A list of the identities of the private subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_public_subnets" {
default = []
description = "A list of the identities of the public subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_database_subnets" {
default = []
description = "A list of the identities of the database subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_cidr" {
type = string
description = "CIDR block for VPC."
default = "10.10.0.0/16"
}
variable "network_public_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.0.0/24", "10.10.1.0/24"]
}
variable "network_private_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.10.0/24", "10.10.11.0/24"]
}
variable "network_database_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.20.0/24", "10.10.21.0/24"]
}
variable "network_elasticache_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.30.0/24", "10.10.31.0/24"]
}
##########################################
# EKS Cluster #
##########################################
variable "kubernetes_public_access" {
type = bool
description = "Indicates whether or not the Amazon EKS public API server endpoint is enabled."
default = false
}
variable "kubernetes_public_access_cidrs" {
description = "List of CIDR blocks which can access the Amazon EKS public API server endpoint."
type = list(string)
default = []
}
variable "kubernetes_map_accounts" {
description = "Additional AWS account numbers to add to the aws-auth configmap."
type = list(string)
default = []
}
variable "kubernetes_map_roles" {
description = "Additional IAM roles to add to the aws-auth configmap."
type = list(object({
rolearn = string
username = string
groups = list(string)
}))
default = []
}
variable "kubernetes_map_users" {
description = "Additional IAM users to add to the aws-auth configmap."
type = list(object({
userarn = string
username = string
groups = list(string)
}))
default = []
}
##########################################
# External Bucket #
##########################################
# Most users will not need these settings. They are ment for users who want a
# bucket and sqs that are in a different account.
variable "bucket_name" {
type = string
default = ""
}
variable "bucket_kms_key_arn" {
type = string
description = "The Amazon Resource Name of the KMS key with which S3 storage bucket objects will be encrypted."
default = ""
}
##########################################
# Redis #
##########################################
variable "create_elasticache" {
type = bool
description = "Boolean indicating whether to provision an elasticache instance (true) or not (false)."
default = false
}