e372b50d19
* GKE Hub initial PR commit
* variable management adjust
* comments, fixes and alphabetically ordered variables
* Update README.md
* Update README.md
* Update README.md
* fix test
* resources vs modules
still needs some love
* remove modules usage
* comments, readme update and output
* adjusting outputs and README
* fix README.md
* fix README
* adjusted based on comments
still need some love in the google_gke_hub_feature_membership variables management
* types and variable management
* optionally enable required api
* Update README.md
* reorder locals and use standard formatting
* Don't enable services from modules
* Use self links for member clusters
* Update readme
* members_clusters back to map
@juliocc let's talk about this cause we saw it together in our call and if I change it to a list than the other resources are not going to work, they need location there too.
* Forcing null feature to false due to a bug in provider
If a block is set to null the provider will crash with a "panic: interface conversion: interface {} is nil, not map[string]interface {}" a PR will follow
* Readme update
* Readme.md update
* Update README.md
* bring back tolist, WIP
* Update main.tf
* Readme.md update
* Update README.md
* Update main.tf
* Update main.tf
* Add id and self_links output to gke-cluster
* Use try and make all member feature blocks dynamic/optional
* Change member clusters to map
* Add gke-hub tests
* Address PR comments
* Update gke-hub readme
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
79 lines
2.2 KiB
HCL
79 lines
2.2 KiB
HCL
/**
|
|
* Copyright 2022 Google LLC
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
variable "features" {
|
|
description = "GKE hub features to enable."
|
|
type = object({
|
|
configmanagement = bool
|
|
mc_ingress = bool
|
|
mc_servicediscovery = bool
|
|
})
|
|
default = {
|
|
configmanagement = true
|
|
mc_ingress = false
|
|
mc_servicediscovery = false
|
|
}
|
|
nullable = false
|
|
}
|
|
|
|
variable "member_clusters" {
|
|
description = "List for member cluster self links."
|
|
type = map(string)
|
|
default = {}
|
|
nullable = false
|
|
}
|
|
|
|
variable "member_features" {
|
|
description = "Member features for each cluster"
|
|
type = object({
|
|
configmanagement = object({
|
|
binauthz = bool
|
|
config_sync = object({
|
|
gcp_service_account_email = string
|
|
https_proxy = string
|
|
policy_dir = string
|
|
secret_type = string
|
|
source_format = string
|
|
sync_branch = string
|
|
sync_repo = string
|
|
sync_rev = string
|
|
})
|
|
hierarchy_controller = object({
|
|
enable_hierarchical_resource_quota = bool
|
|
enable_pod_tree_labels = bool
|
|
})
|
|
policy_controller = object({
|
|
exemptable_namespaces = list(string)
|
|
log_denies_enabled = bool
|
|
referential_rules_enabled = bool
|
|
template_library_installed = bool
|
|
})
|
|
version = string
|
|
})
|
|
# mc-ingress = bool
|
|
# mc-servicediscovery = bool
|
|
})
|
|
default = {
|
|
configmanagement = null
|
|
}
|
|
nullable = false
|
|
}
|
|
|
|
variable "project_id" {
|
|
description = "GKE hub project ID."
|
|
type = string
|
|
}
|