-
Notifications
You must be signed in to change notification settings - Fork 0
/
variables.tf
71 lines (70 loc) · 3 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
variable "domain_name" {
type = string
description = "(Required unless importing certificate) A domain name for which the certificate should be issued"
default = null
}
variable "validation_method" {
type = string
description = "(Optional) Which method to use for validation. DNS or EMAIL are valid, NONE can be used for certificates that were imported into ACM and then into Terraform. If set to EMAIL validation will need to be performed manually."
default = "DNS"
}
variable "certificate_transparency_logging_preference" {
type = string
description = "(Optional) Specifies whether certificate details should be added to a certificate transparency log. Valid values are ENABLED or DISABLED. See https://docs.aws.amazon.com/acm/latest/userguide/acm-concepts.html#concept-transparency for more details."
default = "ENABLED"
}
variable "private_key" {
type = string
description = "(Required to import a certificate) The certificate's PEM-formatted private key"
default = null
}
variable "certificate_body" {
type = string
description = "(Required to import a certificate) The certificate's PEM-formatted public key"
default = null
}
variable "certificate_chain" {
type = string
description = "(Optional) The certificate's PEM-formatted chain"
default = null
}
variable "certificate_authority_arn" {
type = string
description = "(Required if creating a private CA issued certificate) ARN of an ACMPCA"
default = null
}
variable "subject_alternative_names" {
type = list(string)
description = "(Optional) A list of domains that should be SANs in the issued certificate. To remove all elements of a previously configured list, set this value equal to an empty list ([]) or use the terraform taint command to trigger recreation."
default = null
}
variable "tags" {
type = string
description = "(Optional) A map of tags to assign to the resource."
default = null
}
variable "route53_hosted_zone_name" {
type = string
description = "(Optional) Hosted zone name, used for validation. Conflicts with route53_hosted_zone_id_for_validation. If not set terraform will attempt to lookup the zone name."
default = null
}
variable "route53_hosted_zone_id" {
type = string
description = "(Optional) Hosted zone ID, used for validation. Conflicts with route53_hosted_zone_name_for_validation. This option should always be used when possbile, as otherwise the code will need to look up the zone id on each run."
default = null
}
variable "validation_record_ttl" {
type = number
description = "(Optional) The TTL of the record certificate validation record. Default is 60."
default = 60
}
variable "create_certificate" {
type = bool
default = true
description = "(Optional) If set to false no resources will be created."
}
variable "dns" {
type = string
description = "Constant representing the value of the 'DNS' validation option."
default = "DNS"
}