terraform-modules/example/terraform.tfvars

organization_id = "03a34540-3c1a-4794-b2c6-7111ecf824ef"

Projects_map = {
  "projekt-alpha" = {
    name        = "tf_modules_test_6_jh"
    owner_email = "maximilian.schlenz@stackit.cloud"
  },
  "projekt-beta" = {
    name        = "tf_modules_test_7_jh"
    owner_email = "maximilian.schlenz@stackit.cloud"
  }
}

SNA_name = "sna-jh"

SNA_network_ranges = [
  { prefix = "192.168.10.0/24" }
]

SNA_transfer_network = "172.16.0.0/24"

security_groups = {
  ssh_ingress_group = {
    name        = "ssh-ingress-group"
    project_key = "projekt-alpha"
    description = "ALLOW SSH ingress"
    rules = [
      { description = "SSH RULE 1"
        direction   = "ingress"
        ether_type  = "IPv4"
        ip_range    = "0.0.0.0/0"
        protocol = {
          name = "tcp"
        }
        port_range = {
          min = 22
          max = 22
        }
      },
    ]
  },

  web_traffic_group = {
    name        = "web-traffic-group"
    project_key = "projekt-alpha"
    description = "ALLOW WEB TRAFFIC ingress"
    rules = [
      { description = "ALLOW ALL 80"
        direction   = "ingress"
        ether_type  = "IPv4"
        ip_range    = "0.0.0.0/0"
        protocol = {
          name = "tcp"
        }
        port_range = {
          min = 80
          max = 80
        }
      },
      { description = "ALLOW ALL 443"
        direction   = "ingress"
        ether_type  = "IPv4"
        ip_range    = "0.0.0.0/0"
        protocol = {
          name = "tcp"
        }
        port_range = {
          min = 443
          max = 443
        }
      },
    ]
  },
}

postgres_instances = {
  dev = {
    name    = "pg-test-instance"
    project_key = "projekt-alpha"
    version = 17
    flavor = {
      cpu = 2,
      ram = 4
    }
    storage = {
      class = "premium-perf6-stackit",
      size  = 20
    }
    replicas        = 1
    acl             = ["0.0.0.0/0"]
    backup_schedule = "00 00 * * *"

    users = [
      { username = "adminusr",
        roles    = ["login", "createdb"]
      },
      { username = "testusr",
        roles    = ["login"]
      }
    ]

    databases = [
      {
        name  = "testdb",
        owner = "admin"
      }
    ]
  }
}

networks = {
  wan_network = {
    name               = "wan_network"
    project_key        = "projekt-beta"
    ipv4_nameservers   = ["1.1.1.1", "8.8.8.8"]
    ipv4_prefix_length = 29
    ipv4_prefix        = "192.168.10.248/29"
    routed             = true
  }
}

observability_instances = {
  test = {
    # Required
    name      = "test-observability"
    project_key = "projekt-alpha"
    plan_name = "Observability-Large-EU01"

    # Optional instance settings
    acl                                    = ["192.168.100.10/32", "203.0.113.5/32"]
    metrics_retention_days                 = 30
    metrics_retention_days_5m_downsampling = 10
    metrics_retention_days_1h_downsampling = 5
    # parameters = {
    #   "custom_param" = "value"
    # }

    # Credentials
    create_credentials = true
    credentials_count  = 2

    # alert‑groups
    alertgroups = {
      test_group = {
        name     = "example-alert-group"
        interval = "60s"
        rules = [
          {
            alert      = "example-alert-name"
            expression = "kube_node_status_condition{condition=\"Ready\", status=\"false\"} > 0"
            for        = "60s"
            labels = {
              severity = "critical"
            }
            annotations = {
              summary     = "example summary"
              description = "example description"
            }
          },
          {
            alert      = "example-alert-name-2"
            expression = "kube_node_status_condition{condition=\"Ready\", status=\"false\"} > 0"
            for        = "1m"
            labels = {
              severity = "critical"
            }
            annotations = {
              summary     = "example summary"
              description = "example description"
            }
          },
        ]
      }
    }

    # log‑alert‑groups
    logalertgroups = {
      example_log = {
        name     = "example-log-alert-group"
        interval = "60m"
        rules = [
          {
            alert      = "example-log-alert-name"
            expression = "sum(rate({namespace=\"example\", pod=\"logger\"} |= \"Simulated error message\" [1m])) > 0"
            for        = "60s"
            labels = {
              severity = "critical"
            }
            annotations = {
              summary     = "example summary"
              description = "example description"
            }
          },
          {
            alert      = "example-log-alert-name-2"
            expression = "sum(rate({namespace=\"example\", pod=\"logger\"} |= \"Another error message\" [1m])) > 0"
            for        = "60s"
            labels = {
              severity = "critical"
            }
            annotations = {
              summary     = "example summary"
              description = "example description"
            }
          },
        ]
      }
    }

    # scrapeconfigs
    scrapeconfigs = {
      example_job = {
        name         = "example-job"
        metrics_path = "/my-metrics"
        saml2 = {
          enable_url_parameters = true
        }
        targets = [
          {
            urls = ["url1", "urls2"]
            labels = {
              "url1" = "dev"
            }
          }
        ]
      }
    }
  }
}

ske_clusters = {
  /*
  "prod-cluster" = {
    name                   = "clusterprod" 
    project_key            = "projekt-alpha"
    kubernetes_version_min = "1.32.5"

    node_pools = [
      {
        name               = "np"
        machine_type       = "c1.2"
        availability_zones = ["eu01-3", "eu01-1"]
        minimum            = 2
        maximum            = 3
        volume_type        = "storage_premium_perf1"
        volume_size        = 64
        taints = [{
          effect = "NoSchedule"
          key    = "app"
          value  = "database"
        }]
      }
    ]

    hibernations = [
      {
        start    = "00 18 * * 1-5" # Mo-Fr um 18:00 Uhr
        end      = "00 08 * * 1-5" # Mo-Fr um 08:00 Uhr
        timezone = "Europe/Berlin"
      }
    ]

    maintenance = {
      enable_kubernetes_version_updates  = true
      enable_machine_image_version_updates = true
      start                              = "01:00:00Z"
      end                                = "03:00:00Z"
    }

    extensions = {
      acl = {
        enabled       = true
        allowed_cidrs = ["0.0.0.0/0"]
      }
    }
  },
  */
  "dev-cluster" = {
    name        = "cluster"
    kubernetes_version_min = "1.32.5"
    project_key = "projekt-alpha"

    node_pools = [
      {
        name               = "np"
        machine_type       = "g1.4"
        availability_zones = ["eu01-2"]
        minimum            = 1
        maximum            = 2
        volume_size        = 21 
      }
    ]
  }
  
}