Component: strongdm
This component provisions strongDM gateway, relay and roles
Usage
Stack Level: Regional
Use this in the catalog or use these variables to overwrite the catalog values.
components:
terraform:
strong-dm:
vars:
enabled: true
Requirements
| Name | Version |
|---|---|
| terraform | >= 0.13.0 |
| aws | >= 3.0 |
| helm | >= 2.2.0 |
| sdm | >= 1.0.19 |
Providers
| Name | Version |
|---|---|
| aws | >= 3.0 |
| aws.api_keys | >= 3.0 |
| helm | >= 2.2.0 |
| sdm | >= 1.0.19 |
Modules
| Name | Source | Version |
|---|---|---|
| iam_roles | ../account-map/modules/iam-roles | n/a |
| iam_roles_network | ../account-map/modules/iam-roles | n/a |
| this | cloudposse/label/null | 0.24.1 |
Resources
| Name | Type |
|---|---|
| aws_ssm_parameter.gateway_tokens | resource |
| aws_ssm_parameter.relay_tokens | resource |
| aws_ssm_parameter.ssh_admin_token | resource |
| helm_release.cleanup | resource |
| helm_release.gateway | resource |
| helm_release.node | resource |
| helm_release.relay | resource |
| sdm_node.gateway | resource |
| sdm_node.relay | resource |
| aws_ssm_parameter.api_access_key | data source |
| aws_ssm_parameter.api_secret_key | data source |
| aws_ssm_parameter.ssh_admin_token | data source |
Inputs
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| additional_tag_map | Additional tags for appending to tags_as_list_of_maps. Not added to tags. | map(string) | {} | no |
| attributes | Additional attributes (e.g. 1) | list(string) | [] | no |
| context | Single object for setting entire context at once. See description of individual variables for details. Leave string and numeric variables as null to use default value.Individual variable settings (non-null) override settings in context object, except for attributes, tags, and additional_tag_map, which are merged. | any | | no |
| create_roles | Set true to create roles (should only be set in one account) | bool | false | no |
| delimiter | Delimiter to be used between namespace, environment, stage, name and attributes.Defaults to - (hyphen). Set to "" to use no delimiter at all. | string | null | no |
| dns_zone | n/a | string | null | no |
| enabled | Set to false to prevent the module from creating any resources | bool | null | no |
| environment | Environment, e.g. 'uw2', 'us-west-2', OR 'prod', 'staging', 'dev', 'UAT' | string | null | no |
| gateway_count | Number of gateways to provision | number | 2 | no |
| id_length_limit | Limit id to this many characters (minimum 6).Set to 0 for unlimited length.Set to null for default, which is 0.Does not affect id_full. | number | null | no |
| import_profile_name | AWS Profile name to use when importing a resource | string | null | no |
| install_gateway | Set true to install a pair of gateways | bool | false | no |
| install_relay | Set true to install a pair of relays | bool | true | no |
| kms_alias_name | AWS KMS alias used for encryption/decryption default is alias used in SSM | string | "alias/aws/ssm" | no |
| kubernetes_namespace | The Kubernetes namespace to install the release into. Defaults to default. | string | null | no |
| label_key_case | The letter case of label keys (tag names) (i.e. name, namespace, environment, stage, attributes) to use in tags.Possible values: lower, title, upper.Default value: title. | string | null | no |
| label_order | The naming order of the id output and Name tag. Defaults to ["namespace", "environment", "stage", "name", "attributes"]. You can omit any of the 5 elements, but at least one must be present. | list(string) | null | no |
| label_value_case | The letter case of output label values (also used in tags and id).Possible values: lower, title, upper and none (no transformation).Default value: lower. | string | null | no |
| name | Solution name, e.g. 'app' or 'jenkins' | string | null | no |
| namespace | Namespace, which could be your organization name or abbreviation, e.g. 'eg' or 'cp' | string | null | no |
| regex_replace_chars | Regex to replace chars with empty string in namespace, environment, stage and name.If not set, "/[^a-zA-Z0-9-]/" is used to remove all characters other than hyphens, letters and digits. | string | null | no |
| region | AWS Region | string | n/a | yes |
| register_nodes | Set true to register nodes as SSH targets | bool | true | no |
| relay_count | Number of relays to provision | number | 2 | no |
| ssm_account | Account (stage) housing SSM parameters | string | n/a | yes |
| ssm_region | AWS Region housing SSM parameters | string | n/a | yes |
| stage | Stage, e.g. 'prod', 'staging', 'dev', OR 'source', 'build', 'test', 'deploy', 'release' | string | null | no |
| tags | Additional tags (e.g. map('BusinessUnit','XYZ') | map(string) | {} | no |
Outputs
No outputs.