Requirements

The following requirements are needed by this module:

Providers

The following providers are used by this module:

Modules

The following Modules are called:

cert-manager

Source: ../

Version:

Resources

The following resources are used by this module:

Optional Inputs

The following input variables are optional (have default values):

argocd_project

Description: Name of the Argo CD AppProject where the Application should be created. If not set, the Application will be created in a new AppProject only for this Application.

Type: string

Default: null

argocd_labels

Description: Labels to attach to the Argo CD Application resource.

Type: map(string)

Default: {}

destination_cluster

Description: Destination cluster where the application should be deployed.

Type: string

Default: "in-cluster"

target_revision

Description: Override of target revision of the application chart.

Type: string

Default: "v9.0.2"

enable_service_monitor

Description: Enable Prometheus ServiceMonitor in the Helm chart.

Type: bool

Default: true

helm_values

Description: Helm values, passed as a list of HCL structures.

Type: any

Default: []

deep_merge_append_list

Description: A boolean flag to enable/disable appending lists instead of overwriting them.

Type: bool

Default: false

app_autosync

Description: Automated sync options for the Argo CD Application resource.

Type:

object({
    allow_empty = optional(bool)
    prune       = optional(bool)
    self_heal   = optional(bool)
  })

Default:

{
  "allow_empty": false,
  "prune": true,
  "self_heal": true
}

dependency_ids

Description: IDs of the other modules on which this module depends on.

Type: map(string)

Default: {}

resources

Description: Resource limits and requests for cert-manager’s components. Follow the style on official documentation to understand the format of the values.

These are not production values. You should always adjust them to your needs.

Type:

object({

    controller = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    webhook = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    cainjector = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    startupapicheck = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

  })

Default: {}

replicas

Description: Number of replicas for cert-manager’s components.

Type:

object({
    controller = optional(number, 1)
    webhook    = optional(number, 1)
    cainjector = optional(number, 1)
  })

Default: {}

letsencrypt_issuer_email_main

Description: E-mail address used to register with Let’s Encrypt.

Type: string

Default: null

use_default_dns01_solver

Description: Whether to use the default dns01 solver configuration.

Type: bool

Default: true

use_default_http01_solver

Description: Whether to use the default http01 solver configuration.

Type: bool

Default: true

custom_solver_configurations

Description: List of additional solver configurations, appended to the default dns01 and http01 solvers (if enabled).

Type: list(any)

Default: []

Outputs

The following outputs are exported:

id

Description: ID to pass other modules in order to refer to this module as a dependency.

cluster_issuers

Description: List of cluster issuers created by cert-manager.

ca_issuer_certificate

Description: The CA certificate used by the ca-issuer. You can copy this value into a *.pem file and use it as a CA certificate in your browser to avoid having insecure warnings. = Requirements

Name Version

>= 6

>= 3

>= 1

Providers

Name Version

tls

n/a

Modules

Name Source Version

Resources

Name Type

resource

resource

Inputs

Name Description Type Default Required

Name of the Argo CD AppProject where the Application should be created. If not set, the Application will be created in a new AppProject only for this Application.

string

null

no

Labels to attach to the Argo CD Application resource.

map(string)

{}

no

Destination cluster where the application should be deployed.

string

"in-cluster"

no

Override of target revision of the application chart.

string

"v9.0.2"

no

Enable Prometheus ServiceMonitor in the Helm chart.

bool

true

no

Helm values, passed as a list of HCL structures.

any

[]

no

A boolean flag to enable/disable appending lists instead of overwriting them.

bool

false

no

Automated sync options for the Argo CD Application resource.

object({
    allow_empty = optional(bool)
    prune       = optional(bool)
    self_heal   = optional(bool)
  })
{
  "allow_empty": false,
  "prune": true,
  "self_heal": true
}

no

IDs of the other modules on which this module depends on.

map(string)

{}

no

Resource limits and requests for cert-manager’s components. Follow the style on official documentation to understand the format of the values.

These are not production values. You should always adjust them to your needs.
object({

    controller = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    webhook = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    cainjector = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

    startupapicheck = optional(object({
      requests = optional(object({
        cpu    = optional(string, "50m")
        memory = optional(string, "128Mi")
      }), {})
      limits = optional(object({
        cpu    = optional(string)
        memory = optional(string, "128Mi")
      }), {})
    }), {})

  })

{}

no

Number of replicas for cert-manager’s components.

object({
    controller = optional(number, 1)
    webhook    = optional(number, 1)
    cainjector = optional(number, 1)
  })

{}

no

E-mail address used to register with Let’s Encrypt.

string

null

no

Whether to use the default dns01 solver configuration.

bool

true

no

Whether to use the default http01 solver configuration.

bool

true

no

List of additional solver configurations, appended to the default dns01 and http01 solvers (if enabled).

list(any)

[]

no

Outputs

Name Description

id

ID to pass other modules in order to refer to this module as a dependency.

List of cluster issuers created by cert-manager.

The CA certificate used by the ca-issuer. You can copy this value into a *.pem file and use it as a CA certificate in your browser to avoid having insecure warnings.