activate_apis |
List of APIs to enable in the seed project |
list(string) |
[ "cloudresourcemanager.googleapis.com", "cloudbilling.googleapis.com", "billingbudgets.googleapis.com", "iam.googleapis.com", "admin.googleapis.com", "cloudbuild.googleapis.com", "serviceusage.googleapis.com", "servicenetworking.googleapis.com", "compute.googleapis.com", "logging.googleapis.com", "bigquery.googleapis.com", "storage-api.googleapis.com", "container.googleapis.com" ] |
no |
branch |
What branch to pull from |
string |
"^master$" |
no |
cloud_triggers |
Name of triggers to deploy |
list(string) |
[ "1-org", "1-org-b", "2-networks" ] |
no |
cloudbuild_org_iam_permissions |
List of permissions granted to the CloudBuild service account. |
list(string) |
[ "roles/resourcemanager.organizationAdmin", "roles/billing.user", "roles/pubsub.admin", "roles/iam.organizationRoleAdmin", "roles/resourcemanager.folderAdmin", "roles/orgpolicy.policyAdmin", "roles/resourcemanager.projectCreator", "roles/compute.xpnAdmin", "roles/compute.networkAdmin", "roles/iam.serviceAccountAdmin", "roles/resourcemanager.projectIamAdmin", "roles/storage.admin", "roles/logging.admin" ] |
no |
cloudops_triggers |
Name of triggers to deploy |
list(string) |
[ "project-apply" ] |
no |
deployment_dir |
The directory that has the deployments / tfvars |
string |
"projects" |
no |
disable_services_on_destroy |
Whether project services will be disabled when the resources are destroyed |
string |
true |
no |
disable_trigger |
To enable or disable the trigger for automatic deployment |
string |
false |
no |
filename_path |
The file path name of where the cloudbuild yaml files are located |
string |
"cloudbuild" |
no |
github_name |
Name of the repository. |
string |
n/a |
yes |
github_owner |
Owner of the repository. |
string |
n/a |
yes |
modules_dir |
The directory that has the modules to deploy |
string |
"project_iam_vpc" |
no |
org_admins_org_iam_permissions |
List of permissions granted to the group supplied in group_org_admins variable across the GCP organization. |
list(string) |
[ "roles/billing.user", "roles/resourcemanager.organizationAdmin" ] |
no |
parent_folder |
Optional - if using a folder for testing. |
string |
"" |
no |
project_labels |
Labels to apply to the project. |
map(string) |
{ "billing_code": "012345", "envrionment": "prod", "owner": "its" } |
no |
project_prefix |
Name prefix to use for projects created. |
string |
"automation" |
no |
random_project_id |
Adds a suffix of 4 random characters to the project_id |
string |
true |
no |
sa_enable_impersonation |
Allow org_admins group to impersonate service account & enable APIs required. |
bool |
false |
no |
seed_folder_name |
Name of the folder that will contain the Cloud Control Plane projects. |
string |
"Administration" |
no |
skip_gcloud_download |
Whether to skip downloading gcloud (assumes gcloud is already available outside the module) |
bool |
true |
no |
storage_bucket_labels |
Labels to apply to the storage bucket. |
map(string) |
{} |
no |
terraform_tag |
Dockerhub tag value for Terraform container |
string |
"latest" |
no |
tfvars_name |
Name of the tfvars file |
string |
"new-project" |
no |