This repository has been archived by the owner on Jan 25, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 75
/
Copy pathvariables.tf
117 lines (97 loc) · 4.6 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
# ---------------------------------------------------------------------------------------------------------------------
# REQUIRED PARAMETERS
# These parameters must be supplied when consuming this module.
# ---------------------------------------------------------------------------------------------------------------------
variable "gcp_project_id" {
description = "The name of the GCP Project where all resources will be launched."
type = string
}
variable "gcp_region" {
description = "The region in which all GCP resources will be launched."
type = string
}
variable "vault_cluster_name" {
description = "The name of the Vault Server cluster. All resources will be namespaced by this value. E.g. vault-server-prod"
type = string
}
variable "vault_source_image" {
description = "The Google Image used to launch each node in the Vault Server cluster. You can build this Google Image yourself at /examples/vault-consul-image."
type = string
}
variable "consul_server_cluster_name" {
description = "The name of the Consul Server cluster. All resources will be namespaced by this value. E.g. consul-server-prod"
type = string
}
variable "consul_server_source_image" {
description = "The Google Image used to launch each node in the Consul Server cluster. You can build this Google Image yourself at /examples/vault-consul-image."
type = string
}
# ---------------------------------------------------------------------------------------------------------------------
# OPTIONAL PARAMETERS
# These parameters have reasonable defaults.
# ---------------------------------------------------------------------------------------------------------------------
variable "network_project_id" {
description = "The name of the GCP Project where the network is located. Useful when using networks shared between projects. If empty, var.gcp_project_id will be used."
type = string
default = null
}
variable "vault_cluster_machine_type" {
description = "The machine type of the Compute Instance to run for each node in the Vault cluster (e.g. n1-standard-1)."
type = string
default = "g1-small"
}
variable "consul_server_machine_type" {
description = "The machine type of the Compute Instance to run for each node in the Consul Server cluster (e.g. n1-standard-1)."
type = string
default = "g1-small"
}
variable "gcs_bucket_location" {
description = "The location of the Google Cloud Storage Bucket where Vault secrets will be stored. For details, see https://goo.gl/hk63jH."
type = string
default = "US"
}
variable "gcs_bucket_class" {
description = "The Storage Class of the Google Cloud Storage Bucket where Vault secrets will be stored. Must be one of MULTI_REGIONAL, REGIONAL, NEARLINE, or COLDLINE. For details, see https://goo.gl/hk63jH."
type = string
default = "MULTI_REGIONAL"
}
variable "gcs_bucket_force_destroy" {
description = "If true, Terraform will delete the Google Cloud Storage Bucket even if it's non-empty. WARNING! Never set this to true in a production setting. We only have this option here to facilitate testing."
type = bool
default = true
}
variable "vault_cluster_size" {
description = "The number of nodes to have in the Vault Server cluster. We strongly recommended that you use either 3 or 5."
type = number
default = 3
}
variable "consul_server_cluster_size" {
description = "The number of nodes to have in the Consul Server cluster. We strongly recommended that you use either 3 or 5."
type = number
default = 3
}
variable "web_proxy_port" {
description = "The port at which the HTTP proxy server will listen for incoming HTTP requests that will be forwarded to the Vault Health Check URL. We must have an HTTP proxy server to work around the limitation that GCP only permits Health Checks via HTTP, not HTTPS."
type = number
default = 8000
}
variable "root_volume_disk_size_gb" {
description = "The size, in GB, of the root disk volume on each Consul node."
type = number
default = 30
}
variable "root_volume_disk_type" {
description = "The GCE disk type. Can be either pd-ssd, local-ssd, or pd-standard"
type = string
default = "pd-standard"
}
variable "enable_vault_ui" {
description = "If true, enable the Vault UI"
type = bool
default = true
}
variable "image_project_id" {
description = "The name of the GCP Project where the image is located. Useful when using a separate project for custom images. If empty, var.gcp_project_id will be used."
type = string
default = null
}