-
Notifications
You must be signed in to change notification settings - Fork 0
/
variables.tf
165 lines (141 loc) · 4.6 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
variable "setup_chart_version" {
description = "The version of the k8s-ces-setup chart"
type = string
default = "3.0.0"
}
variable "setup_chart_namespace" {
description = "The namespace of k8s-ces-setup chart"
type = string
default = "k8s"
}
variable "ces_namespace" {
description = "The namespace for the CES"
type = string
default = "ecosystem"
}
variable "ces_admin_username" {
description = "The CES admin username"
type = string
default = "admin"
}
variable "ces_admin_password" {
description = "The CES admin password"
type = string
sensitive = true
}
variable "ces_admin_email" {
description = "The CES admin email address"
type = string
default = "[email protected]"
}
variable "ces_fqdn" {
description = "Fully qualified domain name of the EcoSystem, e.g. 'www.ecosystem.my-domain.com'"
type = string
}
variable "ces_certificate_path" {
# Dev Cert: openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes -subj "/C=US/ST=Oregon/L=Portland/O=CompanyName/OU=DepartmentName/CN=example.com"
description = "The certificate of the EcoSystem in PEM format. If null, a self-signed cert is created. If an intermediate certificate is used it also has to be entered here. The certificate chain has to be in the right order: The instance certificate first, intermediate certificate(s) second and at last the root certificate."
type = string
default = null
}
variable "ces_certificate_key_path" {
description = " The certificate key of the EcoSystem in PEM format"
type = string
default = null
}
variable "default_dogu" {
description = "The default Dogu of the EcoSystem"
type = string
default = "cas"
}
variable "dogus" {
description = "A list of Dogus to install"
type = list(string)
default = [
"official/ldap",
"official/postfix",
"k8s/nginx-static",
"k8s/nginx-ingress",
"official/cas"
]
}
variable "additional_components" {
description = "A list of additional components to install"
type = list(object({
name = string
version = string
namespace = string
deployNamespace = string
}))
default = []
}
variable "container_registry_secrets" {
description = "A list of credentials for container registries used by dogus and components. The password must be base64 encoded. The regular configuration would contain registry.cloudogu.com as url."
type = list(object({
url = string
username = string
password = string
}))
}
variable "dogu_registry_username" {
description = "The username for the dogu-registry"
type = string
}
variable "dogu_registry_password" {
description = "The base64-encoded password for the dogu-registry"
type = string
sensitive = true
}
variable "dogu_registry_endpoint" {
description = "The endpoint for the dogu-registry"
type = string
}
variable "dogu_registry_url_schema" {
description = "The URL schema for the dogu-registry ('default' or 'index')"
type = string
default = "default"
}
variable "helm_registry_host" {
description = "The host for the helm-registry"
type = string
}
variable "helm_registry_schema" {
description = "The schema for the helm-registry"
type = string
}
variable "helm_registry_plain_http" {
description = "A flag which indicates if the component-operator should use plain http for the helm-registry"
type = bool
default = false
}
variable "helm_registry_insecure_tls" {
description = "A flag which indicates if the component-operator should use insecure TLS for the helm-registry"
type = bool
default = false
}
variable "helm_registry_username" {
description = "The username for the helm-registry"
type = string
}
variable "helm_registry_password" {
description = "The base64-encoded password for the helm-registry"
type = string
sensitive = true
}
variable "resource_patches" {
description = "The content of the resource-patches for the CES installation."
type = string
default = ""
}
variable "is_setup_applied_matching_resource" {
description = "This variable defines a resource with its kind, api and field selector and is used to determine if the setup has already been executed or not."
type = object({
kind = string
api = string
field_selector = string
})
default = {
kind = "CustomResourceDefinition", api = "apiextensions.k8s.io/v1",
field_selector = "metadata.name==dogus.k8s.cloudogu.com"
}
}