-
Notifications
You must be signed in to change notification settings - Fork 0
/
variables.tf
116 lines (96 loc) · 3.23 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
variable "azure" {
type = object({
resource_group_name = string
location = optional(string, null)
})
description = "Where the resources will be deployed on"
}
variable "cluster_admin_active_directory_group_ids" {
type = list(string)
description = "List of AAD group IDs to be added in the Kubernetes cluster admin group"
}
variable "name" {
type = string
description = "The name of the kubernetes cluster. All associated resources' names will also be prefixed by this value"
}
variable "node_pools" {
type = map(object({
desired_instances = number
vm_size = string
vnet_subnet_id = string
additional_tags = optional(map(string), {})
disk_size = optional(number, 512)
kubernetes_version = optional(string, null)
max_pods_per_node = optional(number, 30)
max_instances = optional(number, null)
min_instances = optional(number, null)
zones = optional(list(string), null)
}))
description = "Map of worker node pool in {node_pool_name = node_pool_config}"
}
variable "add_ons" {
type = object({
azure_key_vault_secrets_provider = optional(object({
enabled = bool
key_vault_name = string
secret_rotation_interval_minutes = optional(number, 2)
}))
azure_policy = optional(object({
enabled = bool
}))
monitoring = optional(object({
enabled = bool
retention_days = optional(number, 60)
}))
})
description = "Manages AKS add ons"
default = null
}
variable "additional_tags" {
type = map(string)
description = "Additional tags for the kubernetes cluster"
default = {}
}
variable "additional_tags_all" {
type = map(string)
description = "Additional tags for all resources in deployed with this module"
default = {}
}
variable "apiserver_authorized_ip_ranges" {
type = list(string)
description = "List of IP ranges to allow access to the API server"
default = ["0.0.0.0/0"]
}
variable "azure_container_registry_attachments" {
type = list(string)
description = "List of ACR resource IDs to grant pull access to the cluster"
default = []
}
variable "enable_private_cluster" {
type = bool
description = "Enables AKS private cluster"
default = false
}
variable "kubernetes_version" {
type = string
description = "The version of Kubernetes, if unspecified, latest version will be used. Must be specified for auto-upgrade to work"
default = null
}
variable "networking_config" {
type = object({
plugin = string
# common options
kubernetes_service_address_range = optional(string, "10.0.0.0/16")
kubernetes_dns_service_ip_address = optional(string, "10.0.0.10")
docker_bridge_address = optional(string, "172.17.0.1/16")
# kubenet options
kubernetes_pod_address_range = optional(string, "10.244.0.0/16")
})
description = "Networking options for the Kubernetes control plane"
default = null
}
variable "user_assigned_managed_identity_ids" {
type = list(string)
description = "List of managed identity IDs used by the cluster to manage azure resources"
default = []
}