-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.tf
185 lines (156 loc) · 5.92 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
# From https://github.com/terraform-aws-modules/terraform-aws-eks/blob/master/variables.tf
################################################################################
# Global
################################################################################
variable "aws_account_id" {
description = "AWS account id"
type = string
}
variable "aws_region" {
description = "AWS region"
type = string
}
variable "oidc_provider_url" {
description = "OIDC provider URL"
type = string
default = ""
}
################################################################################
# Cluster
################################################################################
variable "cluster_name" {
description = "Name of the EKS cluster"
type = string
}
################################################################################
# IAM role
################################################################################
variable "control_plane_roles" {
description = "Control plane roles that can assume your platform role"
type = list(string)
default = ["arn:aws:iam::416964291864:role/tfy-ctl-euwe1-production-truefoundry-deps"]
}
variable "platform_role_enable_override" {
description = "Enable overriding the platform role name. You need to pass blob_storage_override_name to pass the bucket name"
type = bool
default = false
}
variable "platform_role_override_name" {
description = "Platform IAM role name which will have access to S3 bucket, SSM and ECR"
type = string
default = ""
}
################################################################################
# IAM user
################################################################################
variable "platform_user_enabled" {
description = "Enable creation of a platform feature user"
type = bool
default = false
}
variable "platform_user_name_override_enabled" {
description = "Enable overriding the platform user name. You need to pass platform_user_override_name to pass the user name"
type = bool
default = false
}
variable "platform_user_override_name" {
description = "Username to override the default platform feature user"
type = string
default = ""
}
variable "platform_user_force_destroy" {
description = "Enable force destroy of the user"
type = bool
default = true
}
################################################################################
# Buckets
################################################################################
variable "feature_blob_storage_enabled" {
description = "Enable blob storage feature in the platform"
type = bool
default = true
}
variable "blob_storage_enable_override" {
description = "Enable overriding the name of s3 bucket. This will only be used if feature_blob_storage_enabled is enabled. You need to pass blob_storage_override_name to pass the bucket name"
type = bool
default = false
}
variable "blob_storage_override_name" {
description = "S3 bucket name. Only used if s3_enable_override is enabled"
type = string
default = ""
}
variable "blob_storage_encryption_algorithm" {
description = "Algorithm used for encrypting the default bucket."
type = string
default = "AES256"
}
variable "blob_storage_force_destroy" {
description = "Force destroy for mlfoundry s3 bucket"
default = true
type = bool
}
variable "blob_storage_encryption_key_arn" {
description = "ARN of the key used to encrypt the bucket. Only needed if you set aws:kms as encryption algorithm."
type = string
default = null
}
variable "blob_storage_cors_origins" {
description = "List of CORS origins for Mlfoundry bucket"
type = list(string)
default = ["*"]
}
################################################################################
# Parameter Store
################################################################################
variable "feature_parameter_store_enabled" {
description = "Enable parameter store feature in the platform"
type = bool
default = true
}
################################################################################
# Secrets Manager
################################################################################
variable "feature_secrets_manager_enabled" {
description = "Enable secrets manager feature in the platform"
type = bool
default = false
}
################################################################################
# ECR
################################################################################
variable "feature_docker_registry_enabled" {
description = "Enable docker registry feature in the platform"
type = bool
default = true
}
################################################################################
# Cluster Integration
################################################################################
variable "feature_cluster_integration_enabled" {
description = "Enable cluster integration feature in the platform"
type = bool
default = true
}
################################################################################
## Flyte Propeller
################################################################################
variable "flyte_propeller_serviceaccount_namespace" {
description = "Namespace for the Flyte Propeller service account"
type = string
default = "tfy-workflow-propeller"
}
variable "flyte_propeller_serviceaccount_name" {
description = "Name for the Flyte Propeller service account"
type = string
default = "flytepropeller"
}
##################################################################################
## Other variables
##################################################################################
variable "tags" {
description = "A map of tags to add to all resources"
type = map(string)
default = {}
}