-
Notifications
You must be signed in to change notification settings - Fork 9
/
Copy pathvariables.tf
128 lines (106 loc) · 3.6 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
# Required Variables
variable "prefix" {
type = string
description = "This will be the prefix used to name the Resources."
}
# Optional Variables
variable "aws_region" {
description = "The AWS region in which the AWS infrastructure is created."
type = string
default = "us-west-2"
}
variable "aws_cloudwatch_metric_namespace" {
type = string
description = "prefix for CloudWatch Metrics that GEFF writes"
default = "*"
}
variable "log_retention_days" {
description = "Log retention period in days."
default = 0 # Forever
}
variable "env" {
type = string
description = "Dev/Prod/Staging or any other custom environment name."
default = "dev"
}
variable "snowflake_integration_user_roles" {
type = list(string)
default = []
description = "List of roles to which GEFF infra will GRANT USAGE ON INTEGRATION perms."
}
variable "deploy_lambda_in_vpc" {
type = bool
description = "The security group VPC ID for the lambda function."
default = false
}
variable "lambda_security_group_ids" {
type = list(string)
default = []
description = "The security group IDs for the lambda function."
}
variable "lambda_subnet_ids" {
type = list(string)
default = []
description = "The subnet IDs for the lambda function."
}
variable "vpc_id" {
type = string
description = "The VPC ID for creating the lambda and security group ID."
default = null
}
variable "geff_image_version" {
type = string
description = "Version of the GEFF docker image."
default = "latest"
}
variable "data_bucket_arns" {
type = list(string)
default = []
description = "List of Bucket ARNs for the s3_reader role to read from."
}
variable "geff_secret_arns" {
type = list(string)
default = ["*"]
description = "GEFF Secrets."
}
variable "geff_dsn" {
type = string
description = "GEFF project Sentry DSN."
default = ""
}
variable "sentry_driver_dsn" {
type = string
description = "Snowflake errors project Sentry DSN."
default = ""
}
variable "create_dynamodb_table" {
type = bool
description = "Boolean for if a DynamoDB table is to be created for batch locking."
default = true
}
variable "batch_locking_table_name" {
type = string
description = "DynamoDB table name for batch-locking, used either for an existing user-created table when 'create_dynamodb_table' is false, or as a table name for the module-created table when 'create_dynamodb_table' is true."
default = null
}
variable "dynamodb_table_ttl" {
type = number
description = "TTL for items in the dynamodb table."
default = 86400 # 1 day
}
data "aws_caller_identity" "current" {}
data "aws_region" "current" {}
data "aws_partition" "current" {}
locals {
account_id = data.aws_caller_identity.current.account_id
aws_region = data.aws_region.current.name
aws_partition = data.aws_partition.current.partition
aws_dns_suffix = data.aws_partition.current.dns_suffix
lambda_image_repo = "${local.account_id}.dkr.ecr.${local.aws_region}.${local.aws_dns_suffix}/geff"
lambda_image_repo_version = "${local.lambda_image_repo}:${var.geff_image_version}"
lambda_function_name = "${local.geff_prefix}-lambda"
geff_prefix = "${var.prefix}-geff"
inferred_api_gw_invoke_url = "https://${aws_api_gateway_rest_api.ef_to_lambda.id}.execute-api.${local.aws_region}.${local.aws_dns_suffix}/"
api_gw_caller_role_name = "${local.geff_prefix}-api-gateway-caller"
api_gw_logger_role_name = "${local.geff_prefix}-api-gateway-logger"
}