forked from wandb/terraform-aws-wandb
-
Notifications
You must be signed in to change notification settings - Fork 0
/
variables.tf
325 lines (275 loc) · 9.15 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
##########################################
# Common #
##########################################
variable "namespace" {
type = string
description = "String used for prefix resources."
}
variable "deletion_protection" {
description = "If the instance should have deletion protection enabled. The database / S3 can't be deleted when this value is set to `true`."
type = bool
default = true
}
variable "use_internal_queue" {
type = bool
default = false
}
##########################################
# Database #
##########################################
variable "database_engine_version" {
description = "Version for MySQL Auora"
type = string
default = "8.0.mysql_aurora.3.03.0"
}
variable "database_instance_class" {
description = "Instance type to use by database master instance."
type = string
default = "db.r5.large"
}
variable "database_snapshot_identifier" {
description = "Specifies whether or not to create this cluster from a snapshot. You can use either the name or ARN when specifying a DB cluster snapshot, or the ARN when specifying a DB snapshot"
type = string
default = null
}
variable "database_sort_buffer_size" {
description = "Specifies the sort_buffer_size value to set for the database"
type = number
default = 67108864
}
variable "database_name" {
description = "Specifies the name of the database"
type = string
default = "wandb_local"
}
variable "database_master_username" {
description = "Specifies the master_username value to set for the database"
type = string
default = "wandb"
}
variable "database_binlog_format" {
description = "Specifies the binlog_format value to set for the database"
type = string
default = "ROW"
}
variable "database_innodb_lru_scan_depth" {
description = "Specifies the innodb_lru_scan_depth value to set for the database"
type = number
default = 128
}
variable "database_performance_insights_kms_key_arn" {
default = null
description = "Specifies an existing KMS key ARN to encrypt the performance insights data if performance_insights_enabled is was enabled out of band"
nullable = true
type = string
}
##########################################
# DNS #
##########################################
variable "public_access" {
type = bool
default = false
description = "Is this instance accessable a public domain."
}
variable "external_dns" {
type = bool
default = false
description = "Using external DNS. A `subdomain` must also be specified if this value is true."
}
# Sometimes domain name and zone name dont match, so lets explicitly ask for
# both. Also is just life easier to have both even though in most cause it may
# be redundant info.
# https://github.com/hashicorp/terraform-aws-terraform-enterprise/pull/41#issuecomment-563501858
variable "zone_id" {
type = string
description = "Domain for creating the Weights & Biases subdomain on."
}
variable "domain_name" {
type = string
description = "Domain for accessing the Weights & Biases UI."
}
variable "subdomain" {
type = string
default = null
description = "Subdomain for accessing the Weights & Biases UI. Default creates record at Route53 Route."
}
variable "extra_fqdn" {
type = list(string)
default = []
}
##########################################
# Load Balancer #
##########################################
variable "ssl_policy" {
type = string
default = "ELBSecurityPolicy-FS-1-2-Res-2020-10"
description = "SSL policy to use on ALB listener"
}
variable "acm_certificate_arn" {
type = string
default = null
description = "The ARN of an existing ACM certificate."
}
variable "allowed_inbound_cidr" {
description = "CIDRs allowed to access wandb-server."
nullable = false
type = list(string)
}
variable "allowed_inbound_ipv6_cidr" {
description = "CIDRs allowed to access wandb-server."
nullable = false
type = list(string)
}
##########################################
# KMS #
##########################################
variable "kms_key_alias" {
type = string
description = "KMS key alias for AWS KMS Customer managed key."
default = null
}
variable "kms_key_deletion_window" {
type = number
description = "Duration in days to destroy the key after it is deleted. Must be between 7 and 30 days."
default = 7
}
variable "kms_key_policy" {
type = string
description = "The policy that will define the permissions for the kms key."
default = ""
}
##########################################
# Network #
##########################################
variable "create_vpc" {
type = bool
description = "Boolean indicating whether to deploy a VPC (true) or not (false)."
default = true
}
variable "network_id" {
default = ""
description = "The identity of the VPC in which resources will be deployed."
type = string
}
variable "network_private_subnets" {
default = []
description = "A list of the identities of the private subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_public_subnets" {
default = []
description = "A list of the identities of the public subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_database_subnets" {
default = []
description = "A list of the identities of the database subnetworks in which resources will be deployed."
type = list(string)
}
variable "network_cidr" {
type = string
description = "CIDR block for VPC."
default = "10.10.0.0/16"
}
variable "network_public_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.0.0/24", "10.10.1.0/24"]
}
variable "network_private_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.10.0/24", "10.10.11.0/24"]
}
variable "network_database_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.20.0/24", "10.10.21.0/24"]
}
variable "network_elasticache_subnet_cidrs" {
type = list(string)
description = "List of private subnet CIDR ranges to create in VPC."
default = ["10.10.30.0/24", "10.10.31.0/24"]
}
##########################################
# EKS Cluster #
##########################################
variable "eks_cluster_version" {
description = "EKS cluster kubernetes version"
nullable = false
type = string
}
variable "kubernetes_public_access" {
type = bool
description = "Indicates whether or not the Amazon EKS public API server endpoint is enabled."
default = false
}
variable "kubernetes_public_access_cidrs" {
description = "List of CIDR blocks which can access the Amazon EKS public API server endpoint."
type = list(string)
default = []
}
variable "kubernetes_map_accounts" {
description = "Additional AWS account numbers to add to the aws-auth configmap."
type = list(string)
default = []
}
variable "kubernetes_map_roles" {
description = "Additional IAM roles to add to the aws-auth configmap."
type = list(object({
rolearn = string
username = string
groups = list(string)
}))
default = []
}
variable "kubernetes_map_users" {
description = "Additional IAM users to add to the aws-auth configmap."
type = list(object({
userarn = string
username = string
groups = list(string)
}))
default = []
}
variable "kubernetes_instance_types" {
description = "EC2 Instance type for primary node group."
type = list(string)
default = ["m5.large"]
}
variable "eks_policy_arns" {
type = list(string)
description = "Additional IAM policy to apply to the EKS cluster"
default = []
}
##########################################
# External Bucket #
##########################################
# Most users will not need these settings. They are ment for users who want a
# bucket and sqs that are in a different account.
variable "create_bucket" {
type = bool
default = true
}
variable "bucket_name" {
type = string
default = ""
}
variable "bucket_kms_key_arn" {
type = string
description = "The Amazon Resource Name of the KMS key with which S3 storage bucket objects will be encrypted."
default = ""
}
##########################################
# Redis #
##########################################
variable "create_elasticache" {
type = bool
description = "Boolean indicating whether to provision an elasticache instance (true) or not (false)."
default = true
}
variable "elasticache_node_type" {
description = "The type of the redis cache node to deploy"
type = string
default = "cache.t2.medium"
}