-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy path_variables.tf
129 lines (105 loc) · 4.12 KB
/
_variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
variable "name" {
description = "Name of your EKS service"
}
variable "cluster_name" {
description = "Name of existing EKS Cluster to deploy this app to"
}
variable "hostnames" {
description = "Hostnames to create DNS record for this app that the cloudfront distribution will accept"
}
variable "hostname_create" {
description = "Create hostnames in the hosted zone passed?"
default = true
}
variable "hosted_zone" {
description = "Existing Hosted Zone domain to add hostnames as DNS records"
}
variable "default_ttl" {
description = "The default amount of time (in seconds) that an object is in a CloudFront cache"
default = 3600
}
variable "max_ttl" {
description = "The maximum amount of time (in seconds) that an object is in a CloudFront cache"
default = 86400
}
variable "lb_cloudfront_key" {
description = "Key generated by terraform-aws-ecs module to allow ALB connection from CloudFront"
default = null
}
variable "lb_dns_name" {
description = "LB DNS Name that CloudFront will point as origin"
}
variable "certificate_arn" {
description = "Certificate for this app to use in CloudFront (US), must cover `hostname`."
}
variable "cloudfront_web_acl_id" {
default = ""
description = "Optional web acl (WAF) to attach to CloudFront"
}
variable "cloudfront_forward_headers" {
default = ["*"]
description = "Headers to forward to origin from CloudFront"
}
variable "cloudfront_logging_bucket" {
type = string
default = null
description = "Bucket to store logs from app"
}
variable "cloudfront_logging_prefix" {
type = string
default = ""
description = "Logging prefix"
}
variable "cloudfront_origin_keepalive_timeout" {
default = 5
description = "The amount of time, in seconds, that CloudFront maintains an idle connection with a custom origin server before closing the connection. Valid values are from 1 to 60 seconds."
}
variable "cloudfront_origin_read_timeout" {
default = 30
description = "The amount of time, in seconds, that CloudFront waits for a response from a custom origin. The value applies both to the time that CloudFront waits for an initial response and the time that CloudFront waits for each subsequent packet. Valid values are from 4 to 60 seconds."
}
variable "alarm_cloudfront_500_errors_threshold" {
default = 5
description = "Cloudfront 500 Errors rate threshold (use 0 to disable this alarm)"
}
variable "alarm_sns_topics_us" {
default = []
description = "Alarm topics to create and alert on metrics on US region"
}
variable iam_certificate_id {
description = "Specifies IAM certificate id for CloudFront distribution"
type = string
default = null
}
variable minimum_protocol_version {
description = <<EOF
The minimum version of the SSL protocol that you want CloudFront to use for HTTPS connections.
One of SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018 or TLSv1.2_2019. Default: TLSv1.2_2019.
NOTE: If you are using a custom certificate (specified with acm_certificate_arn or iam_certificate_id),
and have specified sni-only in ssl_support_method, TLSv1 or later must be specified.
If you have specified vip in ssl_support_method, only SSLv3 or TLSv1 can be specified.
If you have specified cloudfront_default_certificate, TLSv1 must be specified.
EOF
type = string
default = "TLSv1.2_2019"
}
variable restriction_type {
description = "The restriction type of your CloudFront distribution geolocation restriction. Options include none, whitelist, blacklist"
type = string
default = "none"
}
variable restriction_location {
description = "The ISO 3166-1-alpha-2 codes for which you want CloudFront either to distribute your content (whitelist) or not distribute your content (blacklist)"
type = list
default = []
}
variable dynamic_custom_origin_config {
description = "Configuration for the custom origin config to be used in dynamic block"
type = any
default = []
}
variable dynamic_ordered_cache_behavior {
description = "Ordered Cache Behaviors to be used in dynamic block"
type = any
default = []
}