-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathvariables.tf
136 lines (113 loc) · 3.39 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
variable "organisation_id" {
type = string
description = "Liveramp CAC/Organisation-id"
}
variable "installation_name" {
type = string
default = "identity-engine"
}
variable "name" {
type = string
description = "The human readable customer name"
}
variable "country_code" {
type = string
description = "The ISO 3166-1 two character country code (https://en.wikipedia.org/wiki/List_of_ISO_3166_country_codes)"
}
variable "environment" {
type = string
description = "The environment this infrastructure is supported (eg.: dev, staging or prod)"
}
variable "data_plane_project" {
type = string
description = "The GCP project in which customer data will be stored."
}
variable "bigquery_location" {
type = string
description = "The storage location for BigQuery."
}
variable "storage_location" {
type = string
description = "The storage location for GCS."
}
variable "enable_storage_kms_encryption" {
type = bool
description = "Enable KMS encryption for gcs storage. The encryption key will be in the key_management_location"
default = true
}
variable "gcp_region" {
type = string
description = "The GCP region to be used"
}
variable "dataproc_subnet_ip4_cidr" {
type = string
description = "Subnet used for Dataproc clusters"
}
variable "key_management_location" {
type = string
description = "The key management location for KMS"
}
variable "tenant_orchestration_sa" {
type = string
description = "Tenant Orchestration ServiceAccount for remote execution"
}
variable "data_editors" {
type = object({
service_accounts = list(string)
groups = list(string)
users = list(string)
})
description = "The users, groups & service accounts that should have read & write access to this customers data"
}
variable "data_viewers" {
type = object({
service_accounts = list(string)
groups = list(string)
users = list(string)
})
description = "The users, groups & service accounts that should have read only access to this customers data"
}
variable "data_retention_period_days" {
type = number
description = "The number of days this customers data will be stored before its automatically deleted"
default = 0
}
variable "key_rotation_period_days" {
type = number
description = "The frequency at which the crypto key will automatically rotate (days)"
default = 90
}
variable "metastore_cidr_ip_address" {
type = string
description = "Portrait Engine Metastore CloudSQL instance CIDR IP address"
}
variable "idapi_cidr_ip_addresses" {
type = list(string)
default = []
description = "Portrait Engine ID-API instance CIDR IP addresses"
}
variable "enable_dataproc_network" {
type = bool
description = "Configure network bits for Dataproc - VPC, firewall rules etc"
default = true
}
variable "enable_kms" {
type = bool
description = "Configure KMS to encrypt build bucket"
default = true
}
variable "bigquery_dataset_name" {
type = string
description = "BigQuery Dataset name"
default = ""
}
variable "build_bucket_name" {
type = string
description = "GCS Build bucket name"
default = ""
}
variable "tenant_service_account_name" {
type = string
description = "Service Account name"
default = ""
}