-
Notifications
You must be signed in to change notification settings - Fork 20
/
variables.tf
85 lines (71 loc) · 2.18 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
variable "name" {
description = "Application name."
type = string
}
variable "location" {
description = "Google location where resources are to be created."
type = string
}
variable "project" {
description = "Google project ID."
type = string
}
variable "vault_image" {
description = "Vault docker image (i.e. us.gcr.io/vault-226618/vault:latest)."
type = string
}
variable "bucket_force_destroy" {
description = "CAUTION: Set force_destroy for Storage Bucket. This is where the vault data is stored. Setting this to true will allow terraform destroy to delete the bucket."
type = bool
default = false
}
variable "container_concurrency" {
description = "Max number of connections per container instance."
type = number
default = 80 # Max per Cloud Run Documentation
}
variable "vpc_connector" {
description = "Serverless VPC access connector."
type = string
default = ""
}
variable "vault_ui" {
description = "Enable Vault UI."
type = bool
default = false
}
variable "vault_api_addr" {
description = "Full HTTP endpoint of Vault Server if using a custom domain name. Leave blank otherwise."
type = string
default = ""
}
variable "vault_kms_keyring_name" {
description = "Name of the Google KMS keyring to use."
type = string
default = ""
}
variable "vault_kms_key_rotation" {
description = "The period for KMS key rotation."
type = string
default = "7776000s"
}
variable "vault_kms_key_algorithm" {
description = "The cryptographic algorithm to be used with the KMS key."
type = string
default = "GOOGLE_SYMMETRIC_ENCRYPTION"
}
variable "vault_kms_key_protection_level" {
description = "The protection level to be used with the KMS key."
type = string
default = "SOFTWARE"
}
variable "vault_service_account_id" {
description = "ID for the service account to be used. This is the part of the service account email before the `@` symbol."
type = string
default = "vault-sa"
}
variable "vault_storage_bucket_name" {
description = "Storage bucket name to be used."
type = string
default = ""
}