forked from dgozalo/terraform-eks-jx
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathoutputs.tf
150 lines (125 loc) · 5.27 KB
/
outputs.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
// ----------------------------------------------------------------------------
// Jenkins X Requirements
// ----------------------------------------------------------------------------
output "jx_requirements" {
description = "The jx-requirements rendered output"
value = local.content
}
// ----------------------------------------------------------------------------
// Storage (backup, logs, reports, repo)
// ----------------------------------------------------------------------------
output "backup_bucket_url" {
value = module.backup.backup_bucket_url
description = "The bucket where backups from velero will be stored"
}
output "lts_logs_bucket" {
value = length(module.cluster.logs_jenkins_x) > 0 ? module.cluster.logs_jenkins_x[0] : ""
description = "The bucket where logs from builds will be stored"
}
output "lts_reports_bucket" {
value = length(module.cluster.reports_jenkins_x) > 0 ? module.cluster.reports_jenkins_x[0] : ""
description = "The bucket where test reports will be stored"
}
output "lts_repository_bucket" {
value = length(module.cluster.repository_jenkins_x) > 0 ? module.cluster.repository_jenkins_x[0] : ""
description = "The bucket that will serve as artifacts repository"
}
// VPC
output "vpc_id" {
value = module.cluster.vpc_id
description = "The ID of the VPC"
}
// ----------------------------------------------------------------------------
// Cluster
// ----------------------------------------------------------------------------
output "cluster_name" {
value = local.cluster_name
description = "The name of the created cluster"
}
output "cluster_oidc_issuer_url" {
value = module.cluster.cluster_oidc_issuer_url
description = "The Cluster OIDC Issuer URL"
}
output "eks_module" {
value = module.cluster.eks_module
description = "The output of the terraform-aws-modules/eks/aws module for use in terraform"
}
// ----------------------------------------------------------------------------
// Generated IAM Roles
// ----------------------------------------------------------------------------
output "cert_manager_iam_role" {
value = module.cluster.cert_manager_iam_role
description = "The IAM Role that the Cert Manager pod will assume to authenticate"
}
output "tekton_bot_iam_role" {
value = module.cluster.tekton_bot_iam_role
description = "The IAM Role that the build pods will assume to authenticate"
}
output "external_dns_iam_role" {
value = module.cluster.external_dns_iam_role
description = "The IAM Role that the External DNS pod will assume to authenticate"
}
output "cm_cainjector_iam_role" {
value = module.cluster.cm_cainjector_iam_role
description = "The IAM Role that the CM CA Injector pod will assume to authenticate"
}
output "controllerbuild_iam_role" {
value = module.cluster.controllerbuild_iam_role
description = "The IAM Role that the ControllerBuild pod will assume to authenticate"
}
output "cluster_autoscaler_iam_role" {
value = module.cluster.cluster_autoscaler_iam_role
description = "The IAM Role that the Jenkins X UI pod will assume to authenticate"
}
output "pipeline_viz_iam_role" {
value = module.cluster.pipeline_viz_iam_role
description = "The IAM Role that the pipeline visualizer pod will assume to authenticate"
}
output "cluster_asm_iam_role" {
value = module.cluster.cluster_asm_iam_role
description = "The IAM Role that the External Secrets pod will assume to authenticate (Secrets Manager)"
}
output "cluster_ssm_iam_role" {
value = module.cluster.cluster_ssm_iam_role
description = "The IAM Role that the External Secrets pod will assume to authenticate (Parameter Store)"
}
// ----------------------------------------------------------------------------
// Vault Resources
// ----------------------------------------------------------------------------
output "vault_unseal_bucket" {
value = module.vault.vault_unseal_bucket
description = "The Vault storage bucket"
}
output "vault_dynamodb_table" {
value = module.vault.vault_dynamodb_table
description = "The Vault DynamoDB table"
}
output "vault_kms_unseal" {
value = module.vault.kms_vault_unseal
description = "The Vault KMS Key for encryption"
}
output "vault_user_id" {
value = length(module.vault.vault_user_id) > 0 ? module.vault.vault_user_id[0] : ""
description = "The Vault IAM user id"
}
output "vault_user_secret" {
value = length(module.vault.vault_user_secret) > 0 ? module.vault.vault_user_secret[0] : ""
description = "The Vault IAM user secret"
}
// ----------------------------------------------------------------------------
// DNS
// ----------------------------------------------------------------------------
output "subdomain_nameservers" {
value = module.dns.subdomain_nameservers
}
// ----------------------------------------------------------------------------
// Connection string
// ----------------------------------------------------------------------------
output "connect" {
description = <<EOT
"The cluster connection string to use once Terraform apply finishes,
this command is already executed as part of the apply, you may have to provide the region and
profile as environment variables "
EOT
value = "aws eks update-kubeconfig --name ${var.cluster_name}"
}