| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647 |
- variable "tags" {
- type = map(any)
- default = {}
- }
- variable "cloudtrail_key_arn" {
- # Unfortunately, if we use the alias, it modifies it every time, so we have to grab the actual arn
- type = string
- }
- variable "extra_ebs_key_admins" {
- description = "Extra EBS encryption key admins."
- type = list(any)
- default = []
- }
- variable "extra_ebs_key_users" {
- description = "Extra EBS encryption key users."
- type = list(any)
- default = []
- }
- variable "extra_ebs_key_attachers" {
- description = "Extra EBS encryption key attachers."
- type = list(any)
- default = []
- }
- variable "log_group_name" {
- description = "Cloudtrail Log Group Name to Use. Keep the default unless you have a good reason."
- type = string
- default = "cloudtrail-local-account"
- }
- # ----------------------------------
- # Below this line are variables inherited from higher levels, so they
- # do not need to be explicitly passed to this module.
- variable "is_legacy" { type = bool }
- variable "legacy_account" { type = string }
- # Calculate some local variables
- locals {
- logging_environment = var.environment == "common" ? "prod" : var.environment # common logs to prod
- c2_account = var.c2_accounts[var.aws_partition]
- is_c2 = var.aws_account_id == local.c2_account ? true : false
- }
|
