Requirements

Name	Version
terraform	>= 1.3.9
grafana	3.22.0
helm	2.12.1
keycloak	4.4.0
kubectl	2.1.3
kubernetes	2.35.1
template	2.2.0

Providers

Name	Version
template	2.2.0
terraform	n/a

Modules

Name	Source	Version
cert-manager	./create-cert-manager	n/a
create-argo	./create-argo	n/a
create-cosmotech-api	./create-cosmotech-api	n/a
create-grafana-dashboard	./create-grafana-dashboard	n/a
create-keycloak	./create-keycloak-realm	n/a
create-minio	./create-minio	n/a
create-postgresql-db	./create-postgresql-db	n/a
create-rabbitmq	./create-rabbitmq	n/a
create-redis-stack	./create-redis-stack	n/a
create-seaweedfs	./create-seaweedfs	n/a
create-tls	./create-secret-tls	n/a
deploy-pvc-minio	./persistence-claim-minio	n/a
deploy-pvc-postgres	./persistence-claim-postgres	n/a
deploy-pvc-redis	./persistence-claim-redis	n/a
deploy-pvc-seaweedfs	./persistence-claim-seaweedfs	n/a

Resources

Name	Type
template_file.summary	data source
terraform_remote_state.tenant_infra	data source

Inputs

Name	Description	Type	Default	Required
api_acr_login_password	n/a	string	n/a	yes
api_acr_login_server	n/a	string	n/a	yes
api_acr_login_server_url	n/a	string	n/a	yes
api_acr_login_username	n/a	string	n/a	yes
api_adx_ingestion_uri	n/a	string	n/a	yes
api_adx_uri	n/a	string	n/a	yes
api_auth_provider	n/a	string	n/a	yes
api_chart_package_version	n/a	string	n/a	yes
api_deploy	n/a	bool	n/a	yes
api_dns_name	n/a	string	n/a	yes
api_eventbus_uri	n/a	string	n/a	yes
api_graph_enabled	n/a	bool	n/a	yes
api_helm_chart	n/a	string	n/a	yes
api_helm_release_name	n/a	string	n/a	yes
api_helm_repository	n/a	string	n/a	yes
api_identifier_uri	n/a	string	n/a	yes
api_identity_provider	n/a	any	n/a	yes
api_ingress_enabled	n/a	bool	n/a	yes
api_is_multitenant	n/a	bool	n/a	yes
api_list_apikey_allowed	n/a	list(object({ name = string apiKey = string associatedRole = string securedUris = list(string) }))	n/a	yes
api_list_authorized_mime_types	n/a	list(string)	n/a	yes
api_max_file_size	n/a	string	n/a	yes
api_max_request_size	n/a	string	n/a	yes
api_replicas	n/a	number	n/a	yes
api_storage_account_key	n/a	string	n/a	yes
api_storage_account_name	n/a	string	n/a	yes
api_version	n/a	string	n/a	yes
api_version_path	n/a	string	n/a	yes
argo_database	n/a	string	n/a	yes
argo_deploy	n/a	bool	n/a	yes
argo_helm_chart	n/a	string	n/a	yes
argo_helm_chart_version	n/a	string	n/a	yes
argo_helm_repo_url	n/a	string	n/a	yes
argo_postgres_release_name	n/a	string	n/a	yes
argo_postgresql_secret_name	n/a	string	n/a	yes
argo_s3_bucket_name	n/a	string	n/a	yes
argo_s3_credentials_secret	n/a	string	n/a	yes
argo_s3_endpoint	n/a	string	n/a	yes
argo_s3_password_key	n/a	string	n/a	yes
argo_s3_username_key	n/a	string	n/a	yes
cert_cluster_issuer_name	n/a	string	n/a	yes
cert_tls_namespace	n/a	string	n/a	yes
cert_tls_secret_name	n/a	string	n/a	yes
certificate_cert_content	n/a	string	n/a	yes
certificate_key_content	n/a	string	n/a	yes
client_id	n/a	string	n/a	yes
client_secret	n/a	string	n/a	yes
cloud_provider	n/a	string	n/a	yes
cluster_name	n/a	string	n/a	yes
create_rabbitmq_secret	n/a	bool	n/a	yes
custom_tls_certificate_certificate	n/a	string	n/a	yes
custom_tls_certificate_key	n/a	string	n/a	yes
custom_tls_namespace	n/a	string	n/a	yes
custom_tls_secret_name	n/a	string	n/a	yes
dashboard_deploy	n/a	bool	n/a	yes
dashboard_redis_auth_user	n/a	string	n/a	yes
first_tenant_in_cluster	n/a	bool	n/a	yes
grafana_auth	Authentication credentials for Grafana provider in the format 'username:password'	string	n/a	yes
keycloak_add_identity_provider_azure	n/a	bool	n/a	yes
keycloak_client_id	n/a	string	n/a	yes
keycloak_client_secret	n/a	string	n/a	yes
keycloak_deploy	Wether to create Keycloak resources fot this tenant : - realm - OpenID client & scopes - roles - Authentication flow - Default user After this deployment, you will need to manually set the authentication flow as the default to the broker identification. To do so go to the Authentication menu. On the new line with the "auto link user" flow, click the 3 dot at the end of the line and then "Bind flow". Then select First broker login flow. You should have the newly created flow "auto link user" with the column Used by set to First broker login flow.	bool	n/a	yes
keycloak_deploy_automation_client	Deploy the automation client in Keycloak.	bool	n/a	yes
keycloak_password	n/a	string	n/a	yes
keycloak_realm_jwt_claim_api_client	n/a	string	n/a	yes
keycloak_realm_jwt_claim_web_client	n/a	string	n/a	yes
keycloak_url	n/a	string	n/a	yes
keycloak_user_app_role	n/a	list(string)	n/a	yes
keycloak_username	n/a	string	n/a	yes
kube_config	n/a	string	n/a	yes
kubernetes_cluster_admin_activate	n/a	bool	n/a	yes
kubernetes_resource_group	n/a	string	n/a	yes
kubernetes_tenant_namespace	n/a	string	n/a	yes
minio_argo_access_key	n/a	string	n/a	yes
minio_argo_bucket_name	n/a	string	n/a	yes
minio_argo_persistence_size	n/a	string	n/a	yes
minio_argo_requests_memory	n/a	string	n/a	yes
minio_argo_secret_key	n/a	string	n/a	yes
minio_deploy	n/a	bool	n/a	yes
minio_existing_pvc_name	n/a	string	n/a	yes
minio_helm_chart	n/a	string	n/a	yes
minio_helm_repo_url	n/a	string	n/a	yes
minio_requests_memory	n/a	string	n/a	yes
minio_version	n/a	string	n/a	yes
monitoring_enabled	n/a	bool	n/a	yes
monitoring_namespace	n/a	string	n/a	yes
network_sp_client_id	n/a	string	n/a	yes
network_sp_client_secret	n/a	string	n/a	yes
postgresql_argo_database	n/a	string	n/a	yes
postgresql_argo_user	n/a	string	n/a	yes
postgresql_auth_password	n/a	string	n/a	yes
postgresql_auth_user	n/a	string	n/a	yes
postgresql_cosmotech_api_admin_username	n/a	string	n/a	yes
postgresql_cosmotech_api_reader_username	n/a	string	n/a	yes
postgresql_cosmotech_api_writer_username	n/a	string	n/a	yes
postgresql_db	n/a	string	n/a	yes
postgresql_deploy	n/a	bool	n/a	yes
postgresql_existing_pvc_name	n/a	string	n/a	yes
postgresql_helm_chart	n/a	string	n/a	yes
postgresql_helm_repo_url	n/a	string	n/a	yes
postgresql_initdb_secret_name	n/a	string	n/a	yes
postgresql_persistence_size	n/a	string	n/a	yes
postgresql_port	n/a	number	n/a	yes
postgresql_secret_name	n/a	string	n/a	yes
postgresql_secrets_config_create	n/a	bool	n/a	yes
postgresql_version	n/a	string	n/a	yes
pvc_minio_deploy	n/a	bool	n/a	yes
pvc_minio_disk_name	n/a	string	n/a	yes
pvc_minio_storage_accessmode	n/a	string	n/a	yes
pvc_minio_storage_class_name	n/a	string	n/a	yes
pvc_minio_storage_gbi	n/a	string	n/a	yes
pvc_postgres_deploy	n/a	bool	n/a	yes
pvc_postgres_disk_name	n/a	string	n/a	yes
pvc_postgres_storage_accessmode	n/a	string	n/a	yes
pvc_postgres_storage_class_name	n/a	string	n/a	yes
pvc_postgres_storage_gbi	n/a	string	n/a	yes
pvc_redis_deploy	n/a	bool	n/a	yes
pvc_redis_disk_master_name	n/a	string	n/a	yes
pvc_redis_disk_replica_name	n/a	string	n/a	yes
pvc_redis_storage_accessmode	n/a	string	n/a	yes
pvc_redis_storage_class_name	n/a	string	n/a	yes
pvc_redis_storage_gbi	n/a	string	n/a	yes
pvc_seaweedfs_deploy	n/a	bool	n/a	yes
pvc_seaweedfs_disk_master_name	n/a	string	n/a	yes
pvc_seaweedfs_disk_volume_name	n/a	string	n/a	yes
pvc_seaweedfs_storage_accessmode	n/a	string	n/a	yes
pvc_seaweedfs_storage_class_name	n/a	string	n/a	yes
pvc_seaweedfs_storage_gbi	n/a	string	n/a	yes
rabbitmq_deploy	n/a	bool	n/a	yes
rabbitmq_helm_chart	n/a	string	n/a	yes
rabbitmq_helm_chart_version	n/a	string	n/a	yes
rabbitmq_helm_release_name	n/a	string	n/a	yes
rabbitmq_helm_repo_url	n/a	string	n/a	yes
rabbitmq_listener_username	n/a	string	n/a	yes
rabbitmq_namespace	n/a	string	n/a	yes
rabbitmq_persistence_size	n/a	string	n/a	yes
rabbitmq_sender_username	n/a	string	n/a	yes
redis_admin_password	n/a	string	n/a	yes
redis_chart_version	n/a	string	n/a	yes
redis_cosmotech_version	n/a	string	n/a	yes
redis_deploy	n/a	bool	n/a	yes
redis_helm_chart_name	n/a	string	n/a	yes
redis_helm_release_name	n/a	string	n/a	yes
redis_helm_repo_url	n/a	string	n/a	yes
redis_master_existing_pvc_name	n/a	string	n/a	yes
redis_persistence_size	n/a	string	n/a	yes
redis_port	n/a	number	n/a	yes
redis_pvc_storage_class_name	n/a	string	n/a	yes
redis_replica_existing_pvc_name	n/a	string	n/a	yes
redis_resources	n/a	object({ limits = object({ cpu = string memory = string }) requests = object({ cpu = string memory = string }) })	n/a	yes
seaweedfs_database	n/a	string	n/a	yes
seaweedfs_helm_chart_name	n/a	string	n/a	yes
seaweedfs_helm_chart_repository	n/a	string	n/a	yes
seaweedfs_helm_chart_version	n/a	string	n/a	yes
seaweedfs_master_existing_pvc_name	n/a	string	n/a	yes
seaweedfs_postgresql_port	n/a	string	n/a	yes
seaweedfs_username	n/a	string	n/a	yes
seaweedfs_volume_existing_pvc_name	n/a	string	n/a	yes
secret_tls_secret_name	n/a	string	n/a	yes
subscription_id	n/a	string	n/a	yes
tenant_id	n/a	string	n/a	yes
tenant_resource_group	n/a	string	n/a	yes
tenant_sp_client_id	n/a	string	n/a	yes
tenant_sp_client_secret	n/a	string	n/a	yes
tf_access_key	n/a	string	n/a	yes
tf_blob_name_tenant_infra	n/a	string	n/a	yes
tf_container_name	n/a	string	n/a	yes
tf_resource_group_name	n/a	string	n/a	yes
tf_storage_account_name	n/a	string	n/a	yes
tls_certificate_type	n/a	string	n/a	yes
vault_address	n/a	string	n/a	yes
vault_allowed_namespace	n/a	string	n/a	yes
vault_deploy	n/a	bool	n/a	yes
vault_engine_secret	n/a	string	n/a	yes
vault_namespace	n/a	string	n/a	yes
vault_organization	n/a	string	n/a	yes
vault_sops_namespace	n/a	string	n/a	yes

Outputs

Name	Description
rendered	n/a