-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathoptional-lambda.tf
193 lines (163 loc) · 5.75 KB
/
optional-lambda.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
variable "lambda_name" {
description = "Name of the Lambda function"
default = null
type = string
}
variable "lambda_description" {
description = "Description for this lambda function"
default = null
type = string
}
variable "role_arn" {
description = "ARN of the role to be used for this Lambda"
default = null
type = string
}
variable "timeout" {
description = "Timeout in seconds of the Lambda"
default = 3
type = number
}
variable "environment_vars" {
description = "Map of environment variables for the Lambda. If null, defaults to setting an SSM_PATH based on the environment and name of the function. Set to {} if you would like for there to be no environment variables present. This is important if you are creating a Lambda@Edge."
default = null
type = map(any)
}
variable "memory_size" {
description = "Amount of memory in MB your Lambda Function can use at runtime"
default = 128
type = number
}
variable "log_retention_in_days" {
description = "Number of days to retain CloudWatch Log entries"
default = 7
type = number
}
variable "publish" {
description = "Whether to publish creation/change as new Lambda Function Version"
default = true
type = bool
}
variable "policy_json" {
description = "Policy JSON. If null, default policy granting access to SSM and cloudwatch logs is used"
default = null
type = string
}
variable "permissions_boundary_arn" {
description = "ARN of the permissions boundary to use on the role created for this lambda"
default = null
type = string
}
variable "layers" {
description = "Lambda layers to apply to function. If null, a Lambda Layer extension is added by default."
default = null
type = list(string)
}
variable "lambda_insights_extension_version" {
description = "Lambda layer version for the LambdaInsightsExtension layer"
default = null
type = number
}
variable "lambda_insights_extension_account_number" {
description = "Account number for the LambdaInsightsExtension layer"
default = "580247275435"
type = string
}
variable "parameters_and_secrets_extension_version" {
description = "Lambda layer version for the AWS-Parameters-and-Secrets-Lambda-Extension layer"
default = null
type = number
}
variable "parameters_and_secrets_extension_account_number" {
description = "Account number for the AWS-Parameters-and-Secrets-Lambda-Extension layer"
default = "177933569100"
type = string
}
variable "app_config_extension_version" {
description = "Lambda layer version for the AWS-AppConfig-Extension layer"
default = null
type = number
}
variable "app_config_extension_account_number" {
description = "Account number for the AWS-AppConfig-Extension layer"
default = "027255383542"
type = string
}
variable "tracing_config_mode" {
description = "Tracing config mode for X-Ray integration on Lambda"
default = "Active"
type = string
validation {
condition = contains(["Active", "PassThrough", "Disabled"], var.tracing_config_mode)
error_message = "Valid configurations for X-Ray tracing config are 'Active' and 'PassThrough'. Setting this value to 'Disabled' disables X-Ray tracing."
}
}
variable "use_prefix" {
description = "Use prefix for resources instead of explicitly defining whole name where possible"
default = true
type = bool
}
variable "architectures" {
description = "Architectures to target for the Lambda function"
default = ["x86_64"]
type = list(string)
}
variable "file_system_config" {
description = "File system configuration for the Lambda function"
default = null
type = map(any)
}
variable "vpc_id" {
description = "VPC ID. If null, one will be looked up based on environment tag."
default = null
type = string
}
variable "add_vpc_config" {
description = "Add VPC configuration to the Lambda function"
default = false
type = bool
}
variable "security_group_id" {
description = "Security group ID. If null, one will be created."
default = null
type = string
}
variable "subnets" {
description = "Subnets to use for the Lambda function. Ignored if add_vpc_config is false. If null, one will be looked up based on environment tag."
default = null
type = list(string)
}
variable "ssm_path" {
description = "SSM path to use for environment variables. If null, defaults to /$${var.environment}/$${local.name}"
default = null
type = string
}
variable "add_ssm_extension_layer" {
description = "Add the AWS-Parameters-and-Secrets-Lambda-Extension layer to the Lambda function. Ignored if layers is not null or if `image_uri` is defined."
default = true
type = bool
}
variable "add_app_config_extension_layer" {
description = "Add the AWS-AppConfig-Lambda-Extension layer to the Lambda function. Ignored if layers is not null or if `image_uri` is defined."
default = true
type = bool
}
variable "allow_app_config_access" {
description = "Allow AppConfig access from the Lambda function. Ignored if `policy_json` or `role_arn` are set."
default = true
type = bool
}
variable "package_type" {
description = "Package type for the Lambda function. Valid values are Zip and Image."
default = "Zip"
type = string
}
variable "ephemeral_storage_size" {
description = "Size of the ephemeral storage in MB. Ignored if runtime is not supported."
default = 512
type = number
validation {
condition = var.ephemeral_storage_size >= 512 && var.ephemeral_storage_size <= 10240
error_message = "Ephemeral storage size must be between 512 and 10240 MB."
}
}