-
Notifications
You must be signed in to change notification settings - Fork 1
/
variables.tf
104 lines (86 loc) · 3.35 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
variable "vpc_id" {
type = string
description = "VPC ID to create Elasticsearch domain within."
}
variable "domain" {
type = string
description = "Name of Elasticsearch domain to create"
}
variable "volume_size" {
type = string
description = "Size of disk provisioned for Elasticsearch instances in GB."
}
variable "instance_type" {
type = string
description = "AWS instance type to use for Elasticsearch nodes."
}
variable "region" {
type = string
description = "AWS region to create resources within"
}
variable "instance_count" {
type = string
description = "Number of Elasticsearch nodes to create"
}
variable "private_subnets_cidrs" {
type = list(string)
description = "The CIDR of IPs that should be able to access Elasticsearch. Typically the CIDR of worker nodes created by the EKS module."
}
variable "private_subnets" {
type = list(string)
description = "Subnet IDs that can access Elasticsearch (once created). Typically the worker security group ID created by the EKS module."
}
variable "elasticsearch_version" {
type = string
description = "Version of Elasticsearch to use"
}
variable "create_iam_service_linked_role" {
type = string
default = true
description = "Create an AWS Service-Linked Role for use by Elasticsearch. The service linked role is used to provide the Elasticsearch cluster with the appropriate permissions to run. This should be 'true' for the first Elasticsearch cluster you create, and 'false' thereafter. (Only one service-linked role can be created per AWS account and it is shared by all ES domains.) More info at https://docs.aws.amazon.com/IAM/latest/UserGuide/using-service-linked-roles.html"
}
variable "encrypt_at_rest" {
type = bool
default = true
description = "Whether or not to use encryption-at-rest for the newly created elasticsearch cluster. Needs to be disabled if using older instance types like t2 and m3 that do not support encryption."
}
variable "node_to_node_encryption" {
type = string
default = false
description = "Whether or not to use node-node encryption for the newly created ES domain. Requires `elasticsearch_version` version >= 6"
}
variable "tags" {
type = map(string)
default = {}
description = "A set of AWS tags to tag the resulting Elasticsearch cluster with."
}
variable "multiaz" {
type = bool
default = false
description = "Determines if the elasticsearch should be deployed to two AZs. (Default false)"
}
variable "dedicated_master_enabled" {
type = bool
default = false
description = "Determines if a dedicated master insatance is needed"
}
variable "dedicated_master_count" {
type = number
default = 3
description = "Determines how many dedicated master should be created (dedicated_master_enabled should be ture)"
}
variable "dedicated_master_type" {
type = string
default = "c5.large.elasticsearch"
description = "Determines the type of dedicated master instances that should be created (dedicated_master_enabled should be ture)"
}
variable "ebs_type" {
type = string
description = "Ebs type of volume"
default = "gp2"
}
variable "create_log_group" {
type = bool
description = "Boolean that defines if the Log Group will be created or not"
default = false
}