forked from datarevenue-berlin/OpenMLOps-AWS
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.tf
147 lines (123 loc) · 3.33 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
variable "aws_region" {
description = "AWS region"
default = "eu-west-1"
}
variable "cluster_name" {
description = "The name of your EKS cluster"
}
variable "bucket_name" {
description = "The name of S3 bucket. Must be GLOBALLY unique!"
}
variable "db_username" {
description = "Database username"
}
variable "db_password" {
description = "Database password"
sensitive = true
}
variable "additional_aws_users" {
description = "Additional AWS users that will have access to the cluster (e.g. your coworkers)."
type = list(object({
userarn = string
username = string
groups = list(string) // e.g. ["system:masters"]
}))
default = []
}
variable "jupyter_dummy_password"{
description = "Jupyter Hub Password"
}
variable "ory_kratos_db_password"{
description = "Kratos PostgreSQL Database Password"
}
variable "ory_kratos_cookie_secret" {
description = "Session Cookie Generation secret"
sensitive = true
}
variable "oauth2_providers" {
// Configure multiple Oauth2 providers.
// example:
// [{
// provider = github
// client_id = change_me
// client_secret = change_me
// tenant = null
// }]
// If you're using GitHub, Google or Facebook, tenant won't be needed, so please set
// it as null or an empty string. It is required for AzureAd
type = list(object({
provider = string
client_id = string
client_secret = string
tenant = string
}))
description = "OAuth2 Providers credentials"
}
variable "hostname" {
description = "Hostname where the cluster can be accessible"
}
variable "protocol" {
default = "https"
}
variable "install_feast" {
type = bool
}
variable "install_jupyterhub" {
type = bool
}
variable "tls_certificate_arn" {
}
variable "enable_registration_page" {
description = "Bool to set if registration page will or not be visible to users"
type = bool
default = true
}
variable "smtp_connection_uri" {
description = "SMTP Connection for Ory"
type = string
default = "smtp://omigamibot%40gmail.com:[email protected]:587"
}
variable "smtp_from_address" {
description = "Email address for outgoing mails from Ory"
type = string
default = "[email protected]"
}
variable "enable_password_recovery" {
description = "Bool to set to enable password recovery using emails"
type = bool
default = false
}
variable "enable_verification" {
description = "Bool to set to enable account registration confirmation using emails"
type = bool
default = false
}
variable "eks_worker_groups" {
description = "Definition of AWS worker groups to be utilized."
type = list(object({
name = string
instance_type = string
additional_userdata = string
root_volume_type = string
asg_max_size = string
asg_desired_capacity = string
}))
default = [{
name = "worker-group-medium"
instance_type = "t3a.medium"
additional_userdata = ""
root_volume_type = "gp2"
#autoscaling group section
asg_max_size = "4"
asg_desired_capacity = "2"
}]
}
variable "kubernetes_version" {
type = string
default = "1.17"
}
variable "access_rules_path" {
description = "Path to your oathkeeper's access rules definitions YAML file."
type = string
default = null
}