| Name | Version |
|---|---|
| terraform | ~> 1.4 |
| local | ~> 2.5 |
| null | ~> 3.0 |
| Name | Version |
|---|---|
| local | ~> 2.5 |
| null | ~> 3.0 |
No modules.
| Name | Type |
|---|---|
| null_resource.create_cluster | resource |
| local_file.cluster_output | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| always_update | Forces cluster configuration updates on every terraform apply, even without changes. Use with caution as it may cause unnecessary updates. | bool |
false |
no |
| aws_account_id | AWS Account ID where the EKS cluster will be created (e.g., '123456789012') | string |
null |
no |
| aws_cluster_integration_enabled | Enable direct integration with AWS EKS cluster services | bool |
true |
no |
| aws_ecr_enabled | Enable AWS Elastic Container Registry (ECR) integration for container image storage | bool |
true |
no |
| aws_parameter_store_enabled | Enable AWS Systems Manager Parameter Store integration for secret management | bool |
true |
no |
| aws_platform_features_role_arn | AWS IAM Role ARN for role-based authentication (e.g., 'arn:aws:iam::123456789012:role/TrueFoundryRole') | string |
null |
no |
| aws_platform_features_user_access_key_id | AWS IAM Access Key ID for user-based authentication. Required if aws_platform_features_user_enabled is true. | string |
null |
no |
| aws_platform_features_user_enabled | Enable AWS IAM user-based authentication. If true, requires aws_platform_features_user_access_key_id and aws_platform_features_user_secret_access_key. | bool |
false |
no |
| aws_platform_features_user_secret_access_key | AWS IAM Secret Access Key for user-based authentication. Required if aws_platform_features_user_enabled is true. | string |
null |
no |
| aws_region | AWS Region where resources will be created (e.g., 'us-west-2') | string |
null |
no |
| aws_s3_bucket_name | Name of the S3 bucket to use for cluster storage. Required if aws_s3_enabled is true. | string |
null |
no |
| aws_s3_enabled | Enable AWS S3 integration for cluster storage capabilities | bool |
true |
no |
| aws_secrets_manager_enabled | Enable AWS Secrets Manager integration for enhanced secrets management capabilities | bool |
false |
no |
| azure_acr_admin_password | Admin password for Azure Container Registry. Required if azure_acr_enabled is true. | string |
null |
no |
| azure_acr_admin_username | Admin username for Azure Container Registry. Required if azure_acr_enabled is true. | string |
null |
no |
| azure_acr_enabled | Enable Azure Container Registry (ACR) integration for container image storage | bool |
true |
no |
| azure_acr_login_server | Azure Container Registry login server URL (e.g., 'myregistry.azurecr.io') | string |
null |
no |
| azure_blob_storage_connection_string | Connection string for Azure Storage Account. Required if azure_blob_storage_enabled is true. | string |
null |
no |
| azure_blob_storage_enabled | Enable Azure Blob Storage integration for cluster storage capabilities | bool |
true |
no |
| azure_blob_storage_root_url | Root URL for Azure Storage Account (e.g., 'https://mystorageaccount.blob.core.windows.net') | string |
null |
no |
| azure_client_id | Azure Service Principal Client ID for authentication | string |
null |
no |
| azure_client_secret | Azure Service Principal Client Secret for authentication | string |
null |
no |
| azure_cluster_integration_enabled | Enable direct integration with Azure AKS cluster services | bool |
true |
no |
| azure_resource_group_name | Name of the Azure Resource Group where the AKS cluster will be created | string |
null |
no |
| azure_subscription_id | Azure Subscription ID where the AKS cluster will be created (e.g., '12345678-1234-1234-1234-123456789012') | string |
null |
no |
| azure_tenant_id | Azure Tenant ID associated with the subscription | string |
null |
no |
| cluster_name | Name of the Kubernetes cluster to create or manage. Must be unique within your organization. | string |
n/a | yes |
| cluster_type | Type of cluster to create (aws-eks, azure-aks, or gcp-gke-standard) | string |
n/a | yes |
| control_plane_url | URL of the TrueFoundry control plane (e.g., 'https://app.truefoundry.com') | string |
n/a | yes |
| gcp_artifact_registry_url | URL for GCP Artifact Registry (e.g., 'LOCATION-docker.pkg.dev/PROJECT_ID') | string |
null |
no |
| gcp_blob_storage_enabled | Enable GCP Blob Storage integration for cluster storage capabilities | bool |
true |
no |
| gcp_cluster_integration_enabled | Enable direct integration with GCP GKE cluster services | bool |
true |
no |
| gcp_container_registry_enabled | Enable GCP Container Registry integration for container image storage | bool |
true |
no |
| gcp_project_id | GCP Project ID where the GKE cluster will be created | string |
null |
no |
| gcp_region | GCP Region where the GKE cluster is located | string |
null |
no |
| gcp_sa_auth_data | GCP Service Account auth_data | string |
null |
no |
| gcp_sa_client_email | GCP Service Account email address (e.g., '[email protected]') | string |
null |
no |
| gcp_sa_client_id | GCP Service Account client ID for authentication | string |
null |
no |
| gcp_sa_key_type | GCP Service Account key type (typically 'service_account') | string |
"service_account" |
no |
| gcp_sa_private_key | GCP Service Account private key in PEM format | string |
null |
no |
| gcp_secrets_manager_enabled | Enable GCP Secrets Manager integration for secret management | bool |
true |
no |
| gcp_storage_bucket_url | URL for GCP Storage bucket (e.g., 'gs://bucket-name') | string |
null |
no |
| tfy_api_key | TrueFoundry API key for authentication. Can be obtained from the TrueFoundry console. | string |
n/a | yes |
| Name | Description |
|---|---|
| cluster_id | The ID of the created cluster |
| cluster_token | The token for the cluster |
| tenant_name | The name of the tenant |