# === General ===

variable "resource_name_prefix" {
  type        = string
  description = "Resource name prefix used for tagging and naming AWS resources"
  default = "x"
}

variable "aws_region" {
  type        = string
  description = "AWS region where Vault will be deployed"
  default = "eu-north-1"
}

variable "role_arn" {
  type        = string
  description = "The assumed role to use for this project."
}

variable "key_name" {
  type        = string
  description = "(Optional) key pair to use for SSH access to instance"
  default     = "X"
}

variable "common_tags" {
  type        = map(string)
  description = "(Optional) Map of common tags for all taggable AWS resources."
  default     = {
    "project" = "X"
  }
}

# === config ===

variable "instance_type" {
  type        = string
  description = "The instance type to use"
  default     = "t3.micro"
}

variable "ami_id" {
    type        = string
    description = "The AMI ID to use for the instances"
    default     = "ami-0506d6d51f1916a96"
}

# === VPC ===

variable "azs" {
  description = "availability zones to use in AWS region"
  type        = list(string)
  default = [
    "eu-north-1a",
    "eu-north-1b",
  ]
}

variable "allowed_inbound_cidrs_lb" {
  type        = list(string)
  description = "**Required** CIDR blocks to allow inbound traffic to the load balancer"
  default     = ["0.0.0.0/0"]
}

variable "allowed_inbound_cidrs_ssh" {
  type        = list(string)
  description = "**Required** CIDR blocks to allow inbound SSH traffic to the Vault instances"
  default     = ["0.0.0.0/0"]
}