-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathvariables.tf
63 lines (53 loc) · 1.66 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
variable "enabled" {
default = true
description = "Flag to enable or disable the creation of resources."
type = bool
}
variable "oidc_url" {
description = "The URL of the identity provider. Corresponds to the iss claim."
type = string
default = "https://token.actions.githubusercontent.com"
}
variable "client_id_list" {
description = "A list of client IDs (also known as audiences)."
type = list(string)
default = ["sts.amazonaws.com"]
}
variable "thumbprint_list" {
description = "A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider's server certificate(s)."
type = list(string)
default = ["6938fd4d98bab03faadb97b34396831e3780aea1"]
}
variable "github_org" {
description = "GitHub organisation name."
type = string
}
variable "github_repositories" {
description = "List of GitHub repository names."
type = list(string)
}
variable "iam_role_name" {
description = "Friendly name of the role. If omitted, Terraform will assign a random, unique name."
type = string
default = "GitHubOIDCRole"
}
variable "iam_role_description" {
description = "Description of the role"
type = string
default = "IAM role to enable GitHub OIDC access"
}
variable "iam_role_policy" {
description = "Name of the policy to be attacherd to the role."
type = string
default = "ReadOnlyAccess"
}
variable "max_session_duration" {
default = 3600
description = "Maximum session duration in seconds."
type = number
}
variable "iam_role_path" {
default = "/"
description = "Path to the IAM role."
type = string
}