mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-10-01 01:36:09 -04:00
9667dfff58
* all vars have snail_case * make iam schema consistent * infrastructure schema * terraform: update AWS infrastructure module * fix ci * terraform: update AWS infrastructure module * terraform: update AWS IAM module * terraform: update Azure Infrastructure module inputs Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: update Azure IAM module Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: update GCP infrastructure module Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: update GCP IAM module Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: update OpenStack Infrastructure module Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: update QEMU Infrastructure module Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform-module: fix input name Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: tidy * cli: ignore whitespace in Terraform variable tests * terraform-module: fix AWS output names * terraform-module: fix output references Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform: rename `api_server_cert_sans` * Update terraform/infrastructure/aws/modules/public_private_subnet/variables.tf Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * fix self-managed * terraform: revert AWS modules output file renaming * terraform: remove duplicate varable declaration * terraform: rename Azure location field * ci: adjust output name in self-managed e2e test * e2e: continuously print output in upgrade test * e2e: write to output variables * cli: migrate IAM variable names * cli: make `location` field optional --------- Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
134 lines
3.5 KiB
HCL
134 lines
3.5 KiB
HCL
variable "constellation_version" {
|
|
type = string
|
|
description = "Constellation CLI version to use."
|
|
default = "@@CONSTELLATION_VERSION@@"
|
|
}
|
|
|
|
variable "image" {
|
|
type = string
|
|
description = "The node image reference or semantic release version."
|
|
}
|
|
|
|
variable "csp" {
|
|
type = string
|
|
description = "The cloud service provider to use."
|
|
validation {
|
|
condition = var.csp == "aws" || var.csp == "gcp" || var.csp == "azure"
|
|
error_message = "The cloud service provider to use."
|
|
}
|
|
}
|
|
|
|
variable "node_groups" {
|
|
type = map(object({
|
|
role = string
|
|
initial_count = optional(number)
|
|
instance_type = string
|
|
disk_size = number
|
|
disk_type = string
|
|
zone = optional(string, "") # For AWS, GCP
|
|
zones = optional(list(string), []) # For Azure
|
|
}))
|
|
description = "A map of node group names to node group configurations."
|
|
validation {
|
|
condition = can([for group in var.node_groups : group.role == "control-plane" || group.role == "worker"])
|
|
error_message = "The role has to be 'control-plane' or 'worker'."
|
|
}
|
|
}
|
|
|
|
variable "name" {
|
|
type = string
|
|
description = "Name used in the cluster's named resources / cluster name."
|
|
}
|
|
|
|
variable "uid" {
|
|
type = string
|
|
description = "The UID of the Constellation."
|
|
}
|
|
|
|
variable "clusterEndpoint" {
|
|
type = string
|
|
description = "Endpoint of the cluster."
|
|
}
|
|
|
|
variable "inClusterEndpoint" {
|
|
type = string
|
|
description = "The endpoint the cluster uses to reach itself. This might differ from the ClusterEndpoint in case e.g. an internal load balancer is used."
|
|
}
|
|
|
|
variable "initSecretHash" {
|
|
type = string
|
|
description = "Init secret hash."
|
|
}
|
|
|
|
variable "ipCidrNode" {
|
|
type = string
|
|
description = "Node IP CIDR."
|
|
}
|
|
|
|
variable "serviceCidr" {
|
|
type = string
|
|
default = ""
|
|
description = "Kubernetes service CIDR. This is only used during first initialization of Constellation."
|
|
}
|
|
|
|
variable "apiServerCertSANs" {
|
|
type = list(string)
|
|
description = "List of additional SANs (Subject Alternative Names) for the Kubernetes API server certificate."
|
|
}
|
|
|
|
variable "aws_config" {
|
|
type = object({
|
|
region = string
|
|
zone = string
|
|
iam_instance_profile_name_worker_nodes = string
|
|
iam_instance_profile_name_control_plane = string
|
|
})
|
|
description = "The cluster config for AWS."
|
|
default = null
|
|
}
|
|
|
|
variable "azure_config" {
|
|
type = object({
|
|
subscription = string
|
|
tenant = string
|
|
location = string
|
|
resourceGroup = string
|
|
userAssignedIdentity = string
|
|
deployCSIDriver = bool
|
|
secureBoot = bool
|
|
maaURL = string
|
|
networkSecurityGroupName = string
|
|
loadBalancerName = string
|
|
})
|
|
description = "The cluster config for Azure."
|
|
default = null
|
|
}
|
|
|
|
variable "gcp_config" {
|
|
type = object({
|
|
region = string
|
|
zone = string
|
|
project = string
|
|
ipCidrPod = string
|
|
serviceAccountKey = string
|
|
})
|
|
description = "The cluster config for GCP."
|
|
default = null
|
|
}
|
|
|
|
variable "kubernetes_version" {
|
|
type = string
|
|
description = "Kubernetes version."
|
|
}
|
|
|
|
variable "microservice_version" {
|
|
type = string
|
|
description = "Microservice version."
|
|
}
|
|
|
|
variable "debug" {
|
|
type = bool
|
|
default = false
|
|
description = "DON'T USE IN PRODUCTION: Enable debug mode and allow the use of debug images."
|
|
}
|