-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathvariables.tf
60 lines (60 loc) · 1.83 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
variable "namespace" {
type = string
description = "The name of the target ArgoCD Namespace"
}
variable "name" {
type = string
description = "The name for this ArgoCD project"
}
variable "description" {
type = string
description = "A description for this ArgoCD project"
}
variable "destinations" {
type = list(object({ server : string, namespace : string }))
description = "A list of server and namespaces that this project may deploy to."
default = [{
server = "https://kubernetes.default.svc"
namespace = "*"
name = "in-cluster"
}]
}
variable "cascade_delete" {
type = bool
description = "Set to true if this application should cascade delete"
default = false
}
variable "source_repos" {
type = list(string)
description = "A list of repositories this project may pull from"
default = ["*"]
}
variable "cluster_resource_whitelist" {
type = list(object({ kind : string, group : string }))
description = "A list of cluster-scoped resources the project is allowed to access"
default = null
}
variable "namespace_resource_whitelist" {
type = list(object({ kind : string, group : string }))
description = "A list of namespace-scoped resources the project is allowed to access"
default = null
}
variable "namespace_resource_blacklist" {
type = list(object({ kind : string, group : string }))
description = "A list of namespace-scoped resources the project is NOT allowed to access"
default = null
}
variable "permissions" {
type = list(object({
name : string
description : string
policies : list(object({
resource : string
action : string
object : string
}))
oidc_groups : list(string)
}))
description = "A list of roles and their policies to define within ArgoCD"
default = []
}