| broker_node_client_subnets |
A list of subnets to connect to in client VPC (documentation) |
list(string) |
[] |
no |
| broker_node_ebs_volume_size |
The size in GiB of the EBS volume for the data drive on each broker node |
number |
null |
no |
| broker_node_instance_type |
Specify the instance type to use for the kafka brokers. e.g. kafka.m5.large. (Pricing info) |
string |
null |
no |
| broker_node_security_groups |
A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster |
list(string) |
[] |
no |
| client_authentication_sasl_iam |
Enables IAM client authentication |
bool |
false |
no |
| client_authentication_sasl_scram |
Enables SCRAM client authentication via AWS Secrets Manager |
bool |
false |
no |
| client_authentication_tls_certificate_authority_arns |
List of ACM Certificate Authority Amazon Resource Names (ARNs) |
list(string) |
[] |
no |
| cloudwatch_log_group_kms_key_id |
The ARN of the KMS Key to use when encrypting log data |
string |
null |
no |
| cloudwatch_log_group_name |
Name of the Cloudwatch Log Group to deliver logs to |
string |
null |
no |
| cloudwatch_log_group_retention_in_days |
Specifies the number of days you want to retain log events in the log group |
number |
0 |
no |
| cloudwatch_logs_enabled |
Indicates whether you want to enable or disable streaming broker logs to Cloudwatch Logs |
bool |
false |
no |
| configuration_description |
Description of the configuration |
string |
"Complete example configuration" |
no |
| configuration_server_properties |
Contents of the server.properties file. Supported properties are documented in the MSK Developer Guide |
map(string) |
{} |
no |
| create_cloudwatch_log_group |
Determines whether to create a CloudWatch log group |
bool |
true |
no |
| create_schema_registry |
Determines whether to create a Glue schema registry for managing Avro schemas for the cluster |
bool |
true |
no |
| create_scram_secret_association |
Determines whether to create SASL/SCRAM secret association |
bool |
false |
no |
| encryption_at_rest_kms_key_arn |
You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest |
string |
null |
no |
| encryption_in_transit_client_broker |
Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS |
string |
null |
no |
| encryption_in_transit_in_cluster |
Whether data communication among broker nodes is encrypted. Default value: true |
bool |
null |
no |
| enhanced_monitoring |
Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch |
string |
"PER_TOPIC_PER_PARTITION" |
no |
| environment |
Environment (e.g. prod, dev, staging). |
string |
"" |
no |
| firehose_delivery_stream |
Name of the Kinesis Data Firehose delivery stream to deliver logs to |
string |
null |
no |
| firehose_logs_enabled |
Indicates whether you want to enable or disable streaming broker logs to Kinesis Data Firehose |
bool |
false |
no |
| jmx_exporter_enabled |
Indicates whether you want to enable or disable the JMX Exporter |
bool |
false |
no |
| kafka_broker_number |
Kafka brokers per zone |
number |
1 |
no |
| kafka_version |
Version of Kafka brokers |
string |
"2.2.1" |
no |
| label_order |
Label order, e.g. name,application. |
list(any) |
[
"name",
"environment"
] |
no |
| managedby |
ManagedBy, eg 'CloudDrove' |
string |
"hello@clouddrove.com" |
no |
| msk_cluster_enabled |
Flag to control the msk-cluster creation. |
bool |
true |
no |
| name |
Name (e.g. app or cluster). |
string |
"" |
no |
| node_exporter_enabled |
Indicates whether you want to enable or disable the Node Exporter |
bool |
false |
no |
| s3_logs_bucket |
Name of the S3 bucket to deliver logs to |
string |
null |
no |
| s3_logs_enabled |
Indicates whether you want to enable or disable streaming broker logs to S3 |
bool |
false |
no |
| s3_logs_prefix |
Prefix to append to the folder name |
string |
null |
no |
| scaling_max_capacity |
Max storage capacity for Kafka broker autoscaling |
number |
250 |
no |
| scaling_role_arn |
The ARN of the IAM role that allows Application AutoScaling to modify your scalable target on your behalf. This defaults to an IAM Service-Linked Role |
string |
null |
no |
| scaling_target_value |
The Kafka broker storage utilization at which scaling is initiated |
number |
70 |
no |
| schema_registries |
A map of schema registries to be created |
map(any) |
{} |
no |
| schemas |
A map schemas to be created within the schema registry |
map(any) |
{} |
no |
| scram_secret_association_secret_arn_list |
List of AWS Secrets Manager secret ARNs to associate with SCRAM |
list(string) |
[
""
] |
no |
| timeouts |
Create, update, and delete timeout configurations for the cluster |
map(string) |
{} |
no |