generated from plus3it/repo-template
-
Notifications
You must be signed in to change notification settings - Fork 2
/
variables.tf
76 lines (65 loc) · 1.73 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
variable "project" {
description = "Project name to prefix resources with"
type = string
default = "test-iam-key-enforcer"
}
variable "account_name" {
description = "Account name referenced in report"
type = string
default = "TEST_ACCOUNT_NAME"
}
variable "email_target" {
description = "Email to send reports to for an account"
type = string
default = "[email protected]"
}
variable "email_source" {
description = "Email to send reports from"
type = string
default = "[email protected]"
}
variable "admin_email" {
description = "Admin Email that report will be emailed to"
type = string
default = "[email protected]"
}
variable "key_age_warning" {
description = "Age at which to warn (e.g. 75)"
type = number
default = 1
}
variable "key_age_inactive" {
description = "Age at which a key should be inactive (e.g. 90)"
type = number
default = 2
}
variable "key_age_delete" {
description = "Age at which a key should be deleted (e.g. 120)"
type = number
default = 2
}
variable "key_use_threshold" {
description = "Age at which unused keys should be deleted (e.g.30)"
type = number
default = 1
}
variable "s3_enabled" {
description = "Set to 'true' and provide s3_bucket if the audit report should be written to S3"
type = bool
default = true
}
variable "exempt_groups" {
description = "Groups that are exempt from processing"
type = list(string)
default = [
"sample-group",
"test-group",
"other-group",
"service-accounts"
]
}
variable "contact_email" {
description = "Contact Email"
type = string
default = "test"
}