-
Notifications
You must be signed in to change notification settings - Fork 2
/
variables.tf
93 lines (75 loc) · 2.33 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
/*
* Copyright (c) 2019 Netic A/S. All rights reserved.
*
* This source code is licensed under the MIT license found in the
* LICENSE file in the root directory of this source tree.
*/
variable "tags" {
description = "A map of tags to add to all resources"
default = {}
}
variable "name" {
description = "EKS Cluster Name"
}
variable "vpc_id" {
description = "VPC ID"
}
variable "cluster_version" {
description = "Cluster Version"
default = ""
}
variable "subnets" {
description = "List of subnets to launch the cluster in"
type = list(string)
}
variable "workers_security_group_count" {
description = "Number of security group ids"
}
variable "workers_security_group_ids" {
description = "List of worker security group ids allowed to connect to the cluster"
type = list(string)
}
variable "allowed_security_groups" {
description = "List of additoinal security group ids allowed to connect to the cluster"
default = []
}
variable "allowed_security_groups_count" {
description = "Count of allowed security groups"
default = 0
}
variable "allowed_cidr_blocks" {
description = "List of CIDR blocks allowed to connect to the cluster"
default = []
}
variable "aws_role_name" {
description = "AWS Role Name to use when calling kubectl"
default = "eks-global-cluster-admin"
}
variable "aws_profile_name" {
description = "AWS Profile Name to use when calling kubectl"
default = "futadmin"
}
// IAM
variable "map_roles" {
description = "Additional IAM roles to add to the aws-auth configmap. See examples/eks_test_fixture/variables.tf for example format."
default = []
}
variable "map_roles_count" {
description = "The count of roles in the map_roles list."
default = 0
}
variable "cluster_admin_account_id" {
description = "Account ID of account that needs to be trusted for assuming the cluster admin role"
}
variable "global_cluster_admin_group" {
description = "Name of IAM group that will be allowed to assume the global cluster admin role"
default = "EKSGlobalClusterAdmins"
}
variable "global_cluster_admin_role" {
description = "Name of IAM role that will be added to the system:masters group"
default = "eks-global-cluster-admin"
}
variable "enabled_cluster_log_types" {
description = "EKS logs to send to CloudWatch"
default = []
}