-
Notifications
You must be signed in to change notification settings - Fork 22
/
Copy pathvariables.tf
103 lines (90 loc) · 2.28 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
variable "scaleway_access" {
description = "The scaleway access key (export TF_VAR_scaleway_access=$access_key)"
type = string
sensitive = true
}
variable "scaleway_secret" {
description = "The scaleway secret key (export TF_VAR_scaleway_secret=$secret_key)"
type = string
sensitive = true
}
variable "scaleway_project_id" {
description = "The scaleway secret key (export TF_VAR_scaleway_project_id=$project_id)"
type = string
sensitive = true
}
variable "regions" {
description = "The id of the scaleway region (oreder is important)"
type = list(string)
default = ["fr-par-1", "fr-par-2", "nl-ams-1"]
}
variable "arch" {
description = "The Talos architecture list"
type = list(string)
default = ["amd64", "arm64"]
}
data "sops_file" "tfvars" {
source_file = "terraform.tfvars.sops.json"
}
locals {
kubernetes = jsondecode(data.sops_file.tfvars.raw)["kubernetes"]
}
variable "vpc_main_cidr" {
description = "Local subnet rfc1918"
type = string
default = "172.16.0.0/16"
}
variable "controlplane" {
description = "Property of controlplane"
type = map(any)
default = {
count = 0,
type = "COPARM1-2C-8G" # "DEV1-L",
type_lb = "" # "LB-S"
}
}
variable "instances" {
description = "Map of instance properties"
type = map(any)
default = {
"all" = {
version = "v1.30.2"
},
"fr-par-2" = {
web_count = 0,
web_type = "DEV1-L",
worker_count = 0,
worker_type = "COPARM1-2C-8G",
},
}
}
variable "tags" {
description = "Tags of resources"
type = list(string)
default = ["Develop"]
}
variable "whitelist_admins" {
description = "Whitelist for administrators"
default = ["0.0.0.0/0", "::/0"]
}
# curl https://www.cloudflare.com/ips-v4 2>/dev/null | awk '{ print "\""$1"\"," }'
variable "whitelist_web" {
description = "Cloudflare subnets"
default = [
"173.245.48.0/20",
"103.21.244.0/22",
"103.22.200.0/22",
"103.31.4.0/22",
"141.101.64.0/18",
"108.162.192.0/18",
"190.93.240.0/20",
"188.114.96.0/20",
"197.234.240.0/22",
"198.41.128.0/17",
"162.158.0.0/15",
"104.16.0.0/13",
"104.24.0.0/14",
"172.64.0.0/13",
"131.0.72.0/22",
]
}