variable "allowed_account_ids" {
  default     = []
  description = "Optional list of AWS Account IDs that are permitted to write to the bucket"
  type        = list(string)
}

variable "bucket_name" {
  default     = "" # can't dynamically build the bucket name here
  description = "Name of the S3 bucket to create. Defaults to {account_id}-{region}-cloudtrail."
  type        = string
}

variable "lifecycle_rules" {
  default     = []
  description = "lifecycle rules to apply to the bucket"
  type = list(object(
    {
      id                                     = string
      enabled                                = bool
      prefix                                 = string
      expiration                             = number
      noncurrent_version_expiration          = number
      abort_incomplete_multipart_upload_days = number
  }))
}

variable "logging_bucket" {
  description = "S3 bucket with suitable access for logging requests to the cloudtrail bucket"
  type        = string
}

variable "region" {
  description = "Region to create KMS key in"
  type        = string
}

variable "tags" {
  default     = {}
  description = "Mapping of any extra tags you want added to resources"
  type        = map(string)
}