generated from getupcloud/terraform-cluster-template
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables-cluster.tf
161 lines (138 loc) · 4.38 KB
/
variables-cluster.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
variable "subscription_id" {
description = "AKS Subscription ID"
type = string
}
variable "workload_identity_enabled" {
type = bool
description = "Specifies whether Azure AD Workload Identity should be enabled for the Cluster. Defaults to false."
default = false
}
variable "oidc_issuer_enabled" {
type = bool
description = "(Optional) Enable or Disable the OIDC issuer URL"
default = false
}
variable "rbac_aad_admin_group_names" {
description = "Group name of groups with admin access."
type = list(string)
default = ["AKS-cluster-admins"]
}
variable "identity_name" {
type = string
description = "(Optional) Specifies a User Assigned Managed Identity Name to be assigned to this Kubernetes Cluster. This is required when type is set to 'UserAssigned' or 'SystemAssigned, UserAssigned'."
default = null
}
variable "enable_kube_dashboard" {
description = "Enable Kubernetes Dashboard."
type = bool
default = false
}
variable "node_subnet_name" {
description = "Subnet where all nodepools must exist."
type = string
default = null
}
variable "node_vnet_name" {
description = "Vnet where all nodepools must exist."
type = string
default = null
}
## Node Pools ########################################################
variable "default_node_pool" {
description = "AKS default node pool. Reserved for AKs stuff."
type = any
default = {
enable_auto_scaling = true
enable_host_encryption = true
enable_node_public_ip = false
max_count = 2
max_pods = 110
min_count = 1
name = "system"
node_count = null
node_labels = {}
node_taints = []
node_tags = {}
only_critical_addons_enabled = true
orchestrator_version = null
os_disk_size_gb = 50
os_disk_type = null
os_sku = null
type = "VirtualMachineScaleSets"
vm_size = "Standard_D2s_v3"
vnet_subnet_id = null
zones = []
}
}
variable "node_pools" {
description = "AKS node pools. Will merge with var.default_node_pool"
type = any
default = {
infra = {
min_count = 2
max_count = 2
node_taints = ["dedicated=infra:NoSchedule"]
}
app = {
min_count = 2
max_count = 4
}
}
}
## Private DNS Zone ##################################################
variable "private_dns_zone_enabled" {
description = "Enabled user-defined Private DNS Zone"
type = bool
default = false
}
variable "private_dns_zone_name" {
description = "Either the DNS-name of Private DNS Zone which should be delegated to this Cluster, 'System' to have AKS manage this or 'None'."
type = string
default = "System"
}
variable "private_dns_zone_subscription_id" {
description = "Private DNS Zone Subscription ID"
type = string
default = ""
}
variable "private_dns_zone_resource_group_name" {
description = "Private DNS Zone Resource Group name"
type = string
default = ""
}
variable "private_dns_zone_role_definition_name" {
description = "Private DNS Zone Role Definition name"
type = string
default = "Private DNS Zone Contributor"
}
variable "private_dns_zone_skip_service_principal_aad_check" {
description = "Skips the Azure Active Directory check which may fail due to replication lag."
type = bool
default = true
}
## ACR ###############################################################
variable "acr_name" {
description = "ACR name for this cluster"
type = string
default = ""
}
variable "acr_subscription_id" {
description = "ACR Subscription ID"
type = string
default = ""
}
variable "acr_resource_group_name" {
description = "ACR Resource Group name"
type = string
default = ""
}
variable "acr_role_definition_name" {
description = "ACR Role Definition name"
type = string
default = "AcrPull"
}
variable "acr_skip_service_principal_aad_check" {
description = "Skips the Azure Active Directory check which may fail due to replication lag."
type = bool
default = true
}