This repository has been archived by the owner on Jun 10, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathvariables.tf
45 lines (38 loc) · 1.61 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
variable "resource_prefix" {
type = string
description = "A prefix applied to all resources to allow multiple instances of this module to be deployed in the same master account"
}
variable "workspace_details" {
type = map(list(string))
description = "A map of lists with the format of 'workspace': ['aws principle', ...]. These workspaces will have IAM Roles created to allow access to specific paths in the S3 state bucket along with additional AWS principles that will be added to the backend roles assume role policy"
}
variable "workspace_key_prefix" {
type = string
description = "The prefix applied to the state path inside the bucket"
default = "env:"
}
variable "prevent_unencrypted_uploads" {
type = bool
description = "Attach a bucket policy that requires all uploaded files to be explicitly encrypted. Must set the encrypted flag on the backend config."
default = false
}
variable "enable_customer_kms_key" {
type = bool
description = "Create a customer CMK rather than AWS managed CMK"
default = false
}
variable "tags" {
type = map(string)
description = "Tags applied to all resources"
default = {}
}
variable "all_workspaces_details" {
type = list(string)
description = "A list of aws principles that will be allowed to assume the backend-all role"
default = []
}
variable "s3_force_destroy" {
type = bool
description = "All objects (including any locked objects) will be deleted from the bucket so that the bucket can be destroyed without error. These objects are not recoverable!"
default = false
}