forked from plus3it/terraform-aws-tardigrade-vpc-endpoints
-
Notifications
You must be signed in to change notification settings - Fork 5
/
variables.tf
78 lines (72 loc) · 2.43 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
variable "create_sg_per_endpoint" {
description = "Toggle to create a SecurityGroup for each VPC Endpoint. Defaults to using just one for all Interface Endpoints. Note that Gateway Endpoints don't support SecurityGroups."
type = bool
default = false
}
variable "sg_egress_rules" {
description = "Egress rules for the VPC Endpoint SecurityGroup(s). Set to empty list to disable default rules."
type = list(object({
description = string
prefix_list_ids = list(string)
from_port = number
to_port = number
protocol = string
cidr_blocks = list(string)
ipv6_cidr_blocks = list(string)
security_groups = list(string)
}))
default = [{
description = null
prefix_list_ids = null
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
ipv6_cidr_blocks = null
security_groups = null
}]
}
variable "sg_ingress_rules" {
description = "Ingress rules for the VPC Endpoint SecurityGroup(s). Set to empty list to disable default rules."
type = list(object({
description = string
prefix_list_ids = list(string)
from_port = number
to_port = number
protocol = string
cidr_blocks = list(string)
ipv6_cidr_blocks = list(string)
security_groups = list(string)
}))
default = [{
description = null
prefix_list_ids = null
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
ipv6_cidr_blocks = null
security_groups = null
}]
}
variable "subnet_ids" {
description = "Target Subnet IDs for \"Interface\" services. Also used to resolve the `vpc_id`."
type = list(string)
}
variable "route_table_ids" {
description = "Target Route Table IDs to register \"Gateway\" services with. \"Gateway\" Endpoints use Route Tables while \"Interface\" Endpoints use DNS."
type = list(string)
default = []
}
variable "vpc_endpoint_services" {
description = "List of AWS Endpoint service names and types. Both Gateway and Interface Endpoints are supported. See https://docs.aws.amazon.com/general/latest/gr/rande.html for full list."
type = list(object({
name = string
type = string
}))
}
variable "tags" {
description = "A map of tags to add to the VPC Endpoint and to the SecurityGroup(s)."
type = map(string)
default = {}
}