generated from clouddrove/terraform-module-template
-
Notifications
You must be signed in to change notification settings - Fork 4
/
main.tf
80 lines (72 loc) · 4.28 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
resource "helm_release" "addon" {
count = var.manage_via_gitops ? 0 : 1
name = var.helm_config["name"]
repository = try(var.helm_config["repository"], null)
chart = var.helm_config["chart"]
version = try(var.helm_config["version"], null)
timeout = try(var.helm_config["timeout"], 600)
values = try(var.helm_config["values"], null)
create_namespace = length(var.irsa_config) > 0 ? false : try(var.helm_config["create_namespace"], false)
namespace = var.helm_config["namespace"]
lint = try(var.helm_config["lint"], false)
description = try(var.helm_config["description"], "")
repository_key_file = try(var.helm_config["repository_key_file"], "")
repository_cert_file = try(var.helm_config["repository_cert_file"], "")
repository_username = try(var.helm_config["repository_username"], "")
repository_password = try(var.helm_config["repository_password"], "")
verify = try(var.helm_config["verify"], false)
keyring = try(var.helm_config["keyring"], "")
disable_webhooks = try(var.helm_config["disable_webhooks"], false)
reuse_values = try(var.helm_config["reuse_values"], false)
reset_values = try(var.helm_config["reset_values"], false)
force_update = try(var.helm_config["force_update"], false)
recreate_pods = try(var.helm_config["recreate_pods"], false)
cleanup_on_fail = try(var.helm_config["cleanup_on_fail"], false)
max_history = try(var.helm_config["max_history"], 0)
atomic = try(var.helm_config["atomic"], false)
skip_crds = try(var.helm_config["skip_crds"], false)
render_subchart_notes = try(var.helm_config["render_subchart_notes"], true)
disable_openapi_validation = try(var.helm_config["disable_openapi_validation"], false)
wait = try(var.helm_config["wait"], true)
wait_for_jobs = try(var.helm_config["wait_for_jobs"], false)
dependency_update = try(var.helm_config["dependency_update"], false)
replace = try(var.helm_config["replace"], false)
postrender {
binary_path = try(var.helm_config["postrender"], "")
}
dynamic "set" {
iterator = each_item
for_each = try(var.helm_config["set"], null) != null ? distinct(concat(var.set_values, var.helm_config["set"])) : var.set_values
content {
name = each_item.value.name
value = each_item.value.value
type = try(each_item.value.type, null)
}
}
dynamic "set_sensitive" {
iterator = each_item
for_each = try(var.helm_config["set_sensitive"], null) != null ? concat(var.helm_config["set_sensitive"], var.set_sensitive_values) : var.set_sensitive_values
content {
name = each_item.value.name
value = each_item.value.value
type = try(each_item.value.type, null)
}
}
depends_on = [module.irsa]
}
module "irsa" {
source = "../../modules/irsa"
count = length(var.irsa_config) > 0 ? 1 : 0
create_kubernetes_namespace = try(var.irsa_config.create_kubernetes_namespace, true)
create_kubernetes_service_account = try(var.irsa_config.create_kubernetes_service_account, true)
kubernetes_namespace = lookup(var.irsa_config, "kubernetes_namespace", "")
kubernetes_service_account = lookup(var.irsa_config, "kubernetes_service_account", "")
kubernetes_svc_image_pull_secrets = try(var.irsa_config.kubernetes_svc_image_pull_secrets, null)
irsa_iam_policies = lookup(var.irsa_config, "irsa_iam_policies", null)
irsa_iam_role_name = lookup(var.irsa_config, "irsa_iam_role_name", "AWSLoadBalancerController")
irsa_iam_role_path = lookup(var.addon_context, "irsa_iam_role_path", null)
irsa_iam_permissions_boundary = lookup(var.addon_context, "irsa_iam_permissions_boundary", null)
eks_oidc_provider_arn = lookup(var.irsa_config, "eks_oidc_provider_arn", "")
account_id = lookup(var.irsa_config, "account_id", "")
irsa_assume_role_policy = var.irsa_assume_role_policy
}