-
Notifications
You must be signed in to change notification settings - Fork 0
/
variables.tf
106 lines (86 loc) · 2.86 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
/**
* Copyright 2018 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
variable "project_id" {
description = "Bucket project id."
}
variable "prefix" {
description = "Prefix used to generate the bucket name."
}
variable "names" {
description = "Bucket name suffixes."
type = list(string)
}
variable "location" {
description = "Bucket location."
default = "EU"
}
variable "storage_class" {
description = "Bucket storage class."
default = "MULTI_REGIONAL"
}
variable "force_destroy" {
description = "Optional map of lowercase unprefixed name => boolean, defaults to false."
default = {}
}
variable "versioning" {
description = "Optional map of lowercase unprefixed name => boolean, defaults to false."
default = {}
}
variable "bucket_policy_only" {
description = "Disable ad-hoc ACLs on specified buckets. Defaults to true. Map of lowercase unprefixed name => boolean"
default = {}
}
variable "admins" {
description = "IAM-style members who will be granted roles/storage.objectAdmin on all buckets."
default = []
}
variable "creators" {
description = "IAM-style members who will be granted roles/storage.objectCreators on all buckets."
default = []
}
variable "viewers" {
description = "IAM-style members who will be granted roles/storage.objectViewer on all buckets."
default = []
}
variable "bucket_admins" {
description = "Map of lowercase unprefixed name => comma-delimited IAM-style bucket admins."
default = {}
}
variable "bucket_creators" {
description = "Map of lowercase unprefixed name => comma-delimited IAM-style bucket creators."
default = {}
}
variable "bucket_viewers" {
description = "Map of lowercase unprefixed name => comma-delimited IAM-style bucket viewers."
default = {}
}
variable "labels" {
description = "Labels to be attached to the buckets"
default = {}
}
# we need flags to allow member lists to contain dynamic elements
variable "set_admin_roles" {
description = "Grant roles/storage.objectAdmin role to admins and bucket_admins."
default = false
}
variable "set_creator_roles" {
description = "Grant roles/storage.objectCreator role to creators and bucket_creators."
default = false
}
variable "set_viewer_roles" {
description = "Grant roles/storage.objectViewer role to viewers and bucket_viewers."
default = false
}