-
-
Notifications
You must be signed in to change notification settings - Fork 72
/
variables.tf
160 lines (134 loc) · 4.61 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
variable "hostname" {
type = string
description = "Name of website bucket in `fqdn` format (e.g. `test.example.com`). IMPORTANT! Do not add trailing dot (`.`)"
}
variable "parent_zone_id" {
type = string
description = "ID of the hosted zone to contain the record"
default = ""
}
variable "parent_zone_name" {
type = string
description = "Name of the hosted zone to contain the record"
default = ""
}
variable "index_document" {
type = string
default = "index.html"
description = "Amazon S3 returns this index document when requests are made to the root domain or any of the subfolders"
}
variable "redirect_all_requests_to" {
type = string
default = ""
description = "A hostname to redirect all website requests for this bucket to. If this is set `index_document` will be ignored"
}
variable "error_document" {
type = string
default = "404.html"
description = "An absolute path to the document to return in case of a 4XX error"
}
variable "routing_rules" {
type = string
default = ""
description = "A json array containing routing rules describing redirect behavior and when redirects are applied"
}
variable "cors_allowed_headers" {
type = list(string)
default = ["*"]
description = "List of allowed headers"
}
variable "cors_allowed_methods" {
type = list(string)
default = ["GET"]
description = "List of allowed methods (e.g. GET, PUT, POST, DELETE, HEAD) "
}
variable "cors_allowed_origins" {
type = list(string)
default = ["*"]
description = "List of allowed origins (e.g. example.com, test.com)"
}
variable "cors_expose_headers" {
type = list(string)
default = ["ETag"]
description = "List of expose header in the response"
}
variable "cors_max_age_seconds" {
type = number
default = 3600
description = "Time in seconds that browser can cache the response"
}
variable "logs_enabled" {
type = bool
description = "Enable logs for s3 bucket"
default = true
}
variable "logs_standard_transition_days" {
type = number
description = "Number of days to persist in the standard storage tier before moving to the glacier tier"
default = 30
}
variable "logs_glacier_transition_days" {
type = number
description = "Number of days after which to move the data to the glacier storage tier"
default = 60
}
variable "logs_expiration_days" {
type = number
description = "Number of days after which to expunge the objects"
default = 90
}
variable "lifecycle_rule_enabled" {
type = bool
default = false
description = "Enable or disable lifecycle rule"
}
variable "prefix" {
type = string
default = ""
description = "Prefix identifying one or more objects to which the rule applies"
}
variable "noncurrent_version_transition_days" {
type = number
default = 30
description = "Number of days to persist in the standard storage tier before moving to the glacier tier infrequent access tier"
}
variable "noncurrent_version_expiration_days" {
type = number
default = 90
description = "Specifies when noncurrent object versions expire"
}
variable "versioning_enabled" {
type = bool
default = true
description = "Enable or disable versioning"
}
variable "force_destroy" {
type = bool
default = false
description = "Delete all objects from the bucket so that the bucket can be destroyed without error (e.g. `true` or `false`)"
}
variable "replication_source_principal_arns" {
type = list(string)
default = []
description = "(Optional) List of principal ARNs to grant replication access from different AWS accounts"
}
variable "deployment_arns" {
type = map(any)
default = {}
description = "(Optional) Map of deployment ARNs to lists of S3 path prefixes to grant `deployment_actions` permissions"
}
variable "deployment_actions" {
type = list(string)
default = ["s3:PutObject", "s3:PutObjectAcl", "s3:GetObject", "s3:DeleteObject", "s3:ListBucket", "s3:ListBucketMultipartUploads", "s3:GetBucketLocation", "s3:AbortMultipartUpload"]
description = "List of actions to permit deployment ARNs to perform"
}
variable "encryption_enabled" {
type = bool
default = false
description = "When set to 'true' the resource will have AES256 encryption enabled by default"
}
variable "allow_ssl_requests_only" {
type = bool
default = false
description = "Set to `true` to require requests to use Secure Socket Layer (HTTPS/SSL). This will explicitly deny access to HTTP requests"
}