-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathvariables.tf
128 lines (107 loc) · 3.14 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
variable "project" {
type = string
description = "Project name"
}
variable "env" {
type = string
description = "Environment name"
}
variable "resource_group" {
type = string
description = "The name of the resource group in which to create the Microsoft SQL Server"
}
variable "location" {
type = string
description = "Specifies the supported Azure location where the resource exists"
}
variable "admin_login" {
type = string
description = "The administrator login name for the server"
}
variable "admin_password" {
type = string
description = "The password associated with the admin_username"
}
variable "azure_ad_admin_login" {
type = string
description = "The login username of the Azure AD Administrator of this SQL Server."
}
variable "azure_ad_object_id" {
type = string
description = "The object id of the Azure AD Administrator of this SQL Server"
}
variable "custom_mssql_server_name" {
type = string
description = "The name of the Microsoft SQL Server"
default = null
}
variable "server_version" {
type = string
description = "Server version"
default = "12.0"
}
variable "connection_policy" {
type = string
description = "The connection policy the server will use: [Default|Proxy|Redirect]"
default = "Default"
}
variable "minimum_tls_version" {
type = string
description = "The Minimum TLS Version for all SQL Database and SQL Data Warehouse databases associated with the server: [1.0|1.1|1.2]"
default = "1.2"
}
variable "public_network_access_enabled" {
type = bool
description = "Whether public network access is allowed for this server"
default = true
}
variable "tags" {
type = map(any)
description = "A mapping of tags to assign to the resource"
default = {}
}
variable "ip_rules" {
type = map(string)
description = "Map of IP addresses permitted for access to DB"
default = {}
}
variable "tde_encryption_enabled" {
type = bool
description = "Boolean flag that enabled Transparent Data Encryption of Server"
default = false
}
variable "tde_key_permissions" {
type = list(string)
description = "List of tde key permissions"
default = [
"Get",
"WrapKey",
"UnwrapKey",
"GetRotationPolicy",
"SetRotationPolicy"
]
}
variable "key_vault_id" {
type = string
description = "Key Vault ID"
default = null
}
variable "key_vault_key_id" {
type = string
description = "Key Vault Key id for transparent data encryption of server"
default = null
}
variable "auto_rotation_enabled" {
type = bool
description = "Server will continuously check the key vault for any new versions of the key"
default = true
}
variable "mssql_defender_state" {
description = "Manages Microsoft Defender state on the mssql server"
type = string
default = null
validation {
condition = var.mssql_defender_state != null ? contains(["Enabled", "Disabled"], var.mssql_defender_state) : true
error_message = "The only allowed values for variable are: 'Enabled' or 'Disabled"
}
}