Patrick de Ruiter
57e03ed2db
All checks were successful
Code Quality & Security Scan / TFLint (push) Successful in 19s
Code Quality & Security Scan / Terraform Destroy (push) Has been skipped
Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 28s
Code Quality & Security Scan / Checkov Security Scan (push) Successful in 36s
Code Quality & Security Scan / Terraform Validate (push) Successful in 30s
Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s
Code Quality & Security Scan / Terraform Plan (push) Successful in 1m24s
Code Quality & Security Scan / Terraform Apply (push) Successful in 1m45s
114 lines
2.8 KiB
HCL
114 lines
2.8 KiB
HCL
# Renovate Configuration Variables
|
|
|
|
# Container Configuration
|
|
variable "container_name" {
|
|
description = "Name of the Renovate container"
|
|
type = string
|
|
default = "renovate"
|
|
}
|
|
|
|
variable "renovate_image" {
|
|
description = "Docker image for Renovate"
|
|
type = string
|
|
default = "renovate/renovate:latest"
|
|
}
|
|
|
|
variable "restart_policy" {
|
|
description = "Restart policy for the container (no, on-failure, always, unless-stopped)"
|
|
type = string
|
|
default = "unless-stopped"
|
|
}
|
|
|
|
# Resource Limits
|
|
variable "memory_limit" {
|
|
description = "Memory limit for the container in MB (e.g., 2048 for 2GB)"
|
|
type = number
|
|
default = 2048
|
|
}
|
|
|
|
variable "memory_swap_limit" {
|
|
description = "Memory swap limit for the container in MB (-1 for unlimited)"
|
|
type = number
|
|
default = -1
|
|
}
|
|
|
|
# Networking
|
|
variable "domain" {
|
|
description = "Domain name for the application"
|
|
type = string
|
|
default = "bsdserver.lan"
|
|
}
|
|
|
|
variable "dns_name" {
|
|
description = "DNS name for the Renovate service (defaults to container_name if not specified)"
|
|
type = string
|
|
default = null
|
|
}
|
|
|
|
variable "create_cname_record" {
|
|
description = "Whether to create a DNS CNAME record"
|
|
type = bool
|
|
default = false
|
|
}
|
|
|
|
# Renovate Platform Configuration
|
|
|
|
variable "renovate_autodiscover" {
|
|
description = "Enable autodiscovery of repositories"
|
|
type = bool
|
|
default = true
|
|
}
|
|
|
|
variable "renovate_onboarding_config" {
|
|
description = "Onboarding configuration for Renovate (JSON string)"
|
|
type = string
|
|
default = "{\"$schema\":\"https://docs.renovatebot.com/renovate-schema.json\",\"extends\":[\"config:recommended\"]}"
|
|
}
|
|
|
|
# Optional GitHub.com token for fetching changelogs
|
|
variable "github_com_token" {
|
|
description = "GitHub.com token for fetching changelogs (optional)"
|
|
type = string
|
|
default = ""
|
|
sensitive = true
|
|
}
|
|
|
|
# Logging
|
|
variable "log_level" {
|
|
description = "Log level for Renovate (debug, info, warn, error)"
|
|
type = string
|
|
default = "debug"
|
|
}
|
|
|
|
variable "extra_env_vars" {
|
|
description = "Additional environment variables for the container"
|
|
type = list(string)
|
|
default = []
|
|
}
|
|
|
|
# Config File Management
|
|
variable "upload_config_file" {
|
|
description = "Whether to upload a config.js file to the container"
|
|
type = bool
|
|
default = true
|
|
}
|
|
|
|
# Vault Authentication
|
|
variable "role_id" {
|
|
description = "Role ID for Vault AppRole authentication"
|
|
type = string
|
|
sensitive = true
|
|
}
|
|
|
|
variable "secret_id" {
|
|
description = "Secret ID for Vault AppRole authentication"
|
|
type = string
|
|
sensitive = true
|
|
}
|
|
|
|
variable "vault_skip_tls_verify" {
|
|
description = "Skip TLS verification for Vault (useful for self-signed certificates)"
|
|
type = bool
|
|
default = true
|
|
}
|