| always_update |
Forces cluster configuration updates on every terraform apply, even without changes. Use with caution as it may cause unnecessary updates. |
bool |
false |
no |
| aws_account_id |
AWS Account ID where the EKS cluster will be created (e.g., '123456789012') |
string |
null |
no |
| aws_cluster_integration_enabled |
Enable direct integration with AWS EKS cluster services |
bool |
true |
no |
| aws_ecr_enabled |
Enable AWS Elastic Container Registry (ECR) integration for container image storage |
bool |
true |
no |
| aws_parameter_store_enabled |
Enable AWS Systems Manager Parameter Store integration for secret management |
bool |
true |
no |
| aws_platform_features_role_arn |
AWS IAM Role ARN for role-based authentication (e.g., 'arn:aws:iam::123456789012:role/TrueFoundryRole') |
string |
null |
no |
| aws_platform_features_user_access_key_id |
AWS IAM Access Key ID for user-based authentication. Required if aws_platform_features_user_enabled is true. |
string |
null |
no |
| aws_platform_features_user_enabled |
Enable AWS IAM user-based authentication. If true, requires aws_platform_features_user_access_key_id and aws_platform_features_user_secret_access_key. |
bool |
false |
no |
| aws_platform_features_user_secret_access_key |
AWS IAM Secret Access Key for user-based authentication. Required if aws_platform_features_user_enabled is true. |
string |
null |
no |
| aws_region |
AWS Region where resources will be created (e.g., 'us-west-2') |
string |
null |
no |
| aws_s3_bucket_name |
Name of the S3 bucket to use for cluster storage. Required if aws_s3_enabled is true. |
string |
null |
no |
| aws_s3_enabled |
Enable AWS S3 integration for cluster storage capabilities |
bool |
true |
no |
| aws_secrets_manager_enabled |
Enable AWS Secrets Manager integration for enhanced secrets management capabilities |
bool |
false |
no |
| azure_acr_admin_password |
Admin password for Azure Container Registry. Required if azure_acr_enabled is true. |
string |
null |
no |
| azure_acr_admin_username |
Admin username for Azure Container Registry. Required if azure_acr_enabled is true. |
string |
null |
no |
| azure_acr_enabled |
Enable Azure Container Registry (ACR) integration for container image storage |
bool |
true |
no |
| azure_acr_login_server |
Azure Container Registry login server URL (e.g., 'myregistry.azurecr.io') |
string |
null |
no |
| azure_blob_storage_connection_string |
Connection string for Azure Storage Account. Required if azure_blob_storage_enabled is true. |
string |
null |
no |
| azure_blob_storage_enabled |
Enable Azure Blob Storage integration for cluster storage capabilities |
bool |
true |
no |
| azure_blob_storage_root_url |
Root URL for Azure Storage Account (e.g., 'https://mystorageaccount.blob.core.windows.net') |
string |
null |
no |
| azure_client_id |
Azure Service Principal Client ID for authentication |
string |
null |
no |
| azure_client_secret |
Azure Service Principal Client Secret for authentication |
string |
null |
no |
| azure_cluster_integration_enabled |
Enable direct integration with Azure AKS cluster services |
bool |
true |
no |
| azure_resource_group_name |
Name of the Azure Resource Group where the AKS cluster will be created |
string |
null |
no |
| azure_subscription_id |
Azure Subscription ID where the AKS cluster will be created (e.g., '12345678-1234-1234-1234-123456789012') |
string |
null |
no |
| azure_tenant_id |
Azure Tenant ID associated with the subscription |
string |
null |
no |
| cluster_name |
Name of the Kubernetes cluster to create or manage. Must be unique within your organization. |
string |
n/a |
yes |
| cluster_type |
Type of cluster to create (aws-eks, azure-aks, gcp-gke-standard, generic) |
string |
n/a |
yes |
| control_plane_url |
URL of the TrueFoundry control plane (e.g., 'https://app.truefoundry.com') |
string |
n/a |
yes |
| gcp_artifact_registry_url |
URL for GCP Artifact Registry (e.g., 'LOCATION-docker.pkg.dev/PROJECT_ID') |
string |
null |
no |
| gcp_blob_storage_enabled |
Enable GCP Blob Storage integration for cluster storage capabilities |
bool |
true |
no |
| gcp_cluster_integration_enabled |
Enable direct integration with GCP GKE cluster services |
bool |
true |
no |
| gcp_container_registry_enabled |
Enable GCP Container Registry integration for container image storage |
bool |
true |
no |
| gcp_project_id |
GCP Project ID where the GKE cluster will be created |
string |
null |
no |
| gcp_region |
GCP Region where the GKE cluster is located |
string |
null |
no |
| gcp_sa_auth_data |
GCP Service Account auth_data |
string |
null |
no |
| gcp_secrets_manager_enabled |
Enable GCP Secrets Manager integration for secret management |
bool |
true |
no |
| gcp_storage_bucket_url |
URL for GCP Storage bucket (e.g., 'gs://bucket-name') |
string |
null |
no |
| stderr_log_file |
Log file of stdout |
string |
"truefoundry-cluster.stderr" |
no |
| stdout_log_file |
Log file of stdout |
string |
"truefoundry-cluster.stdout" |
no |
| tfy_api_key |
TrueFoundry API key for authentication. Can be obtained from the TrueFoundry console. |
string |
n/a |
yes |