zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloud-foundation-fabric/modules/gcs
History
Julio Castillo cb7c65135e
Update CI processes (#296) 
- Upgrade to latest terraform version (1.0.4)
- Remove tflint from linting pipeline (was not doing anything)
- Add terraform fmt check to linting pipeline
- Pass all code through terraform fmt
 		2021-08-12 17:30:53 +02:00
..
README.md Add support for lifecycle_rule in gcs module (#288) (#289) 2021-07-30 12:07:17 +02:00
main.tf Update CI processes (#296) 2021-08-12 17:30:53 +02:00
outputs.tf Update copyright to 2021 2021-02-15 09:38:10 +01:00
variables.tf Add support for lifecycle_rule in gcs module (#288) (#289) 2021-07-30 12:07:17 +02:00
versions.tf Update copyright to 2021 2021-02-15 09:38:10 +01:00

README.md

Google Cloud Storage Module

TODO

Example

module "bucket" {
  source     = "./modules/gcs"
  project_id = "myproject"
  prefix     = "test"
  name       = "my-bucket"
  iam = {
    "roles/storage.admin" = ["group:storage@example.com"]
  }
}
# tftest:modules=1:resources=2

Example with Cloud KMS

module "bucket" {
  source     = "./modules/gcs"
  project_id = "myproject"
  prefix     = "test"
  name       = "my-bucket"
  iam = {
    "roles/storage.admin" = ["group:storage@example.com"]
  }
  encryption_key = "my-encryption-key"
}
# tftest:modules=1:resources=2

Example with retention policy

module "bucket" {
  source     = "./modules/gcs"
  project_id = "myproject"
  prefix     = "test"
  name       = "my-bucket"
  iam = {
    "roles/storage.admin" = ["group:storage@example.com"]
  }

  retention_policy = {
    retention_period = 100
    is_locked        = true
  }

  logging_config = {
    log_bucket        = var.bucket
    log_object_prefix = null
  }
}
# tftest:modules=1:resources=2

Example with lifecycle rule

module "bucket" {
  source     = "./modules/gcs"
  project_id = "myproject"
  prefix     = "test"
  name      = "my-bucket"

  iam = {
    "roles/storage.admin" = ["group:storage@example.com"]
  }

  lifecycle_rule = {
    action = {
      type          = "SetStorageClass"
      storage_class = "STANDARD"
    }
    condition = {
      age                        = 30
      created_before             = null
      with_state                 = null
      matches_storage_class      = null
      num_newer_versions         = null
      custom_time_before         = null
      days_since_custom_time     = null
      days_since_noncurrent_time = null
      noncurrent_time_before     = null
    }
  }
}
# tftest:modules=1:resources=2

Variables

name description type required default
name Bucket name suffix. string
project_id Bucket project id. string
cors CORS configuration for the bucket. Defaults to null. object({...}) null
encryption_key KMS key that will be used for encryption. string null
force_destroy Optional map to set force destroy keyed by name, defaults to false. bool false
iam IAM bindings in {ROLE => [MEMBERS]} format. map(list(string)) {}
labels Labels to be attached to all buckets. map(string) {}
lifecycle_rule Bucket lifecycle rule object({...}) null
location Bucket location. string EU
logging_config Bucket logging configuration. object({...}) null
prefix Prefix used to generate the bucket name. string null
retention_policy Bucket retention policy. object({...}) null
storage_class Bucket storage class. string ...
uniform_bucket_level_access Allow using object ACLs (false) or not (true, this is the recommended behavior) , defaults to true (which is the recommended practice, but not the behavior of storage API). bool true
versioning Enable versioning, defaults to false. bool false

Outputs

name description sensitive
bucket Bucket resource.
name Bucket name.
url Bucket URL.