-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathsetup.example.tf
73 lines (70 loc) · 3.13 KB
/
setup.example.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
### IF A REMOTE BACKEND IS USED FOR TERRAFORM STATE
# terraform {
# backend "gcs" {
# bucket = "terraform"
# prefix = "state/k8s-example"
# }
# }
### YOUR DEFAULT KUBECONFIG AND CURRENT CONTEXT WILL BE USED. OVERRIDE BY CHOOSING A KUBECONFIG FILE
# provider "kubernetes" {
# experiments {
# manifest_resource = true
# }
# config_path = "kubeconfig"
# config_path = "kubeconfig_${var.name}"
# config_path = "~/.kube/config"
# config_context = "gke_onify-forge_europe-north1-a_infra-internal-gke"
# }
# DEFINE VARIABLES (.tfvars)
variable "ghcr_registry_username" {}
variable "ghcr_registry_password" {}
variable "onify_api_license" {}
variable "onify_api_admin_username" {}
variable "onify_api_admin_password" {}
variable "onify_api_app_secret" {}
variable "onify_api_client_secret" {}
variable "onify_app_api_admin_token" {}
module "onify-client-instance" {
source = "github.com/onify/terraform//modules/onify-customer"
elasticsearch_external = false
ghcr_registry_username = var.ghcr_registry_username
ghcr_registry_password = var.ghcr_registry_password
gcr_registry_keyfile = "./keyfile.json"
elasticsearch_heapsize = "1g" # The more the better
external_dns_domain = "onify.net"
custom_hostname = ["dev"] # Array of domain names
onify_helix_image = "ghcr.io/onify/helix-app-lab:latest"
onify_hub_api_envs = {
#DEBUG = "bpmn-engine:error*" # See https://support.onify.co/discuss/65251b6009eaa20a104adba2
NODE_ENV = "production"
ENV_PREFIX = "ONIFY_"
INTERPRET_CHAR_AS_DOT = "_"
ONIFY_db_indexPrefix = "onify"
ONIFY_adminUser_email = "admin@onify.local"
ONIFY_resources_baseDir = "/usr/share/onify/resources"
ONIFY_resources_tempDir = "/usr/share/onify/temp_resources"
ONIFY_autoinstall = true
ONIFY_client_code = "oni"
ONIFY_client_instance = "dev"
ONIFY_initialLicense = var.onify_api_license
ONIFY_adminUser_username = var.onify_api_admin_username
ONIFY_adminUser_password = var.onify_api_admin_password
ONIFY_apiTokens_app_secret = var.onify_api_app_secret
ONIFY_client_secret = var.onify_api_client_secret
#ONIFY_worker_cleanupInterval = "300"
#ONIFY_logging_logLevel = "debug" # Default is "info"
ONIFY_logging_log = "stdout" # Or "stdout,elastic"
#ONIFY_logging_elasticFlushInterval = "500"
}
onify_hub_app_envs = {
NODE_ENV = "production"
ENV_PREFIX = "ONIFY_"
INTERPRET_CHAR_AS_DOT = "_"
ONIFY_api_admintoken = var.onify_app_api_admin_token
ONIFY_api_externalUrl = "/api/v2"
#ONIFY_disableAdminEndpoints = true
}
#gke = true # Running Google Kubernetes Engine
tls = "prod" # Letencrypt staging or prod. Can also be set to custom, eg. "onify-custom"
#kubernetes_node_api_worker = "gke-infra-internal-g-infra-internal-g-d6d3672e-051b"
}