mirror of
https://github.com/outbackdingo/firezone.git
synced 2026-01-27 10:18:54 +00:00
2bca378f17
## Changelog - Updates connlib parameter API_URL (formerly known under different names as `CONTROL_PLANE_URL`, `PORTAL_URL`, `PORTAL_WS_URL`, and friends) to be configured as an "advanced" or "hidden" feature at runtime so that we can test production builds on both staging and production. - Makes `AUTH_BASE_URL` configurable at runtime too - Moves `CONNLIB_LOG_FILTER_STRING` to be configured like this as well and simplifies its naming - Fixes a timing attack bug on Android when comparing the `csrf` token - Adds proper account ID validation to Android to prevent invalid URL parameter strings from being saved and used - Cleans up a number of UI / view issues on Android regarding typos, consistency, etc - Hides vars from from the `relay` CLI we may not want to expose just yet - `get_device_id()` is flawed for connlib components -- SMBios is rarely available. Data plane components now require a `FIREZONE_ID` now instead to use for upserting. Fixes #2482 Fixes #2471 --------- Signed-off-by: Jamil <jamilbk@users.noreply.github.com> Co-authored-by: Gabi <gabrielalejandro7@gmail.com>
161 lines
3.9 KiB
HCL
161 lines
3.9 KiB
HCL
variable "project_id" {
|
|
type = string
|
|
description = "ID of a Google Cloud Project"
|
|
}
|
|
|
|
################################################################################
|
|
## Compute
|
|
################################################################################
|
|
|
|
variable "compute_network" {
|
|
type = string
|
|
}
|
|
|
|
variable "compute_subnetwork" {
|
|
type = string
|
|
}
|
|
|
|
variable "compute_region" {
|
|
type = string
|
|
}
|
|
|
|
variable "compute_instance_availability_zones" {
|
|
type = list(string)
|
|
description = "List of zones in the region defined in `compute_region` where replicas should be deployed."
|
|
}
|
|
|
|
variable "compute_instance_replicas" {
|
|
type = string
|
|
}
|
|
|
|
variable "compute_instance_type" {
|
|
type = string
|
|
}
|
|
|
|
################################################################################
|
|
## Container Registry
|
|
################################################################################
|
|
|
|
variable "container_registry" {
|
|
type = string
|
|
nullable = false
|
|
description = "Container registry URL to pull the image from."
|
|
}
|
|
|
|
################################################################################
|
|
## Container Image
|
|
################################################################################
|
|
|
|
variable "image_repo" {
|
|
type = string
|
|
nullable = false
|
|
|
|
description = "Repo of a container image used to deploy the application."
|
|
}
|
|
|
|
variable "image" {
|
|
type = string
|
|
nullable = false
|
|
|
|
description = "Container image used to deploy the application."
|
|
}
|
|
|
|
variable "image_tag" {
|
|
type = string
|
|
nullable = false
|
|
|
|
description = "Container image used to deploy the application."
|
|
}
|
|
|
|
################################################################################
|
|
## Observability
|
|
################################################################################
|
|
|
|
variable "observability_log_level" {
|
|
type = string
|
|
nullable = false
|
|
default = "info"
|
|
|
|
description = "Sets RUST_LOG environment variable which applications should use to configure Rust Logger. Default: 'info'."
|
|
}
|
|
|
|
################################################################################
|
|
## Application
|
|
################################################################################
|
|
|
|
variable "application_name" {
|
|
type = string
|
|
nullable = true
|
|
default = null
|
|
|
|
description = "Name of the application. Defaults to value of `var.image_name` with `_` replaced to `-`."
|
|
}
|
|
|
|
variable "application_version" {
|
|
type = string
|
|
nullable = true
|
|
default = null
|
|
|
|
description = "Version of the application. Defaults to value of `var.image_tag`."
|
|
}
|
|
|
|
variable "application_labels" {
|
|
type = map(string)
|
|
nullable = false
|
|
default = {}
|
|
|
|
description = "Labels to add to all created by this module resources."
|
|
}
|
|
|
|
variable "health_check" {
|
|
type = object({
|
|
name = string
|
|
protocol = string
|
|
port = number
|
|
|
|
initial_delay_sec = number
|
|
check_interval_sec = optional(number)
|
|
timeout_sec = optional(number)
|
|
healthy_threshold = optional(number)
|
|
unhealthy_threshold = optional(number)
|
|
|
|
http_health_check = optional(object({
|
|
host = optional(string)
|
|
request_path = optional(string)
|
|
port = optional(string)
|
|
response = optional(string)
|
|
}))
|
|
})
|
|
|
|
nullable = false
|
|
|
|
description = "Health check which will be used for auto healing policy."
|
|
}
|
|
|
|
variable "application_environment_variables" {
|
|
type = list(object({
|
|
name = string
|
|
value = string
|
|
}))
|
|
|
|
nullable = false
|
|
default = []
|
|
|
|
description = "List of environment variables to set for all application containers."
|
|
}
|
|
|
|
################################################################################
|
|
## Firezone
|
|
################################################################################
|
|
|
|
variable "token" {
|
|
type = string
|
|
description = "Portal token to use for authentication."
|
|
}
|
|
|
|
variable "api_url" {
|
|
type = string
|
|
default = "wss://api.firezone.dev"
|
|
description = "URL of the control plane endpoint."
|
|
}
|