-
Notifications
You must be signed in to change notification settings - Fork 7
/
variables.tf
73 lines (56 loc) · 1.54 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
variable "dev_suffix" {}
variable "staging_suffix" {}
variable "dns_cname_records" {}
variable "shared_rg_name" {}
variable "base_name" {}
variable "location" {}
variable "default_tags" {
type = map(string)
default = {
demo = "true"
env = "prod"
iac = "terraform"
}
}
# Key Vault
# ---------
variable "key_vault_names" {}
# TLS Certs
# ---------
variable "dev_certificates" {
type = list(map(string))
description = "List of certificates to save in `cloudkube-dev-kv`"
}
variable "staging_certificates" {
type = list(map(string))
description = "List of certificates to save in `cloudkube-staging-kv`"
}
variable "prod_certificates" {
type = list(map(string))
description = "List of certificates to save in `cloudkube-prod-kv`"
}
# Key Vault Readers
# -----------------
variable "dev_kv_readers" {
type = map(map(string))
description = "Map of managed identities to give Read permissions to the *dev* Key Vault"
default = {}
}
variable "staging_kv_readers" {
type = map(map(string))
description = "Map of managed identities to give Read permissions to the *staging* Key Vault"
default = {}
}
variable "prod_kv_readers" {
type = map(map(string))
description = "Map of managed identities to give Read permissions to the *prod* Key Vault"
default = {}
}
# Federated Identities for Deploymnet
variable "github_identities" {
type = map(map(string))
}
variable "service_management_reference" {
type = string
default = "" # set in private.auto.tfvars
}