Skip to content

Latest commit

 

History

History
63 lines (59 loc) · 6.83 KB

io.md

File metadata and controls

63 lines (59 loc) · 6.83 KB
Raw

Inputs

Name Description Type Default Required
addon_resource_group_name The name of the addon vnet resource group string "" no
addon_vent_link The name of the addon vnet bool false no
addon_virtual_network_id The name of the addon vnet link vnet id string "" no
admin_enabled To enable of disable admin access bool true no
azure_services_bypass Whether to allow trusted Azure services to access a network restricted Container Registry? Possible values are None and AzureServices. Defaults to AzureServices string "AzureServices" no
container_registry_config Manages an Azure Container Registry 
object({
    name                      = string
    sku                       = optional(string)
    quarantine_policy_enabled = optional(bool)
    zone_redundancy_enabled   = optional(bool)
  })
 n/a yes
container_registry_webhooks Manages an Azure Container Registry Webhook 
map(object({
    service_uri    = string
    actions        = list(string)
    status         = optional(string)
    scope          = string
    custom_headers = map(string)
  }))
 null no
diff_sub Flag to tell whether dns zone is in different sub or not. bool false no
enable Flag to control module creation. bool true no
enable_content_trust Boolean value to enable or disable Content trust in Azure Container Registry bool true no
enable_diagnostic Flag to control diagnostic setting resource creation. bool true no
enable_private_endpoint Manages a Private Endpoint to Azure Container Registry bool true no
enable_rotation_policy Whether to enable rotation policy or not bool false no
encryption n/a bool false no
environment Environment (e.g. prod, dev, staging). string "" no
existing_private_dns_zone Name of the existing private DNS zone string null no
existing_private_dns_zone_id ID of existing private dns zone. To be used in dns configuration group in private endpoint. list(any) null no
existing_private_dns_zone_resource_group_name The name of the existing resource group string null no
georeplications A list of Azure locations where the container registry should be geo-replicated 
list(object({
    location                = string
    zone_redundancy_enabled = optional(bool)
  }))
 [] no
identity_ids Specifies a list of user managed identity ids to be assigned. This is required when type is set to UserAssigned or SystemAssigned, UserAssigned list(string) null no
key_vault_id n/a string null no
key_vault_rbac_auth_enabled n/a bool true no
label_order Label order, e.g. sequence of application name and environment name,environment,'attribute' [webserver,qa,devops,public,] . list(any) 
[
  "name",
  "environment"
]
 no
location The location/region to keep all your network resources. To get the list of all locations with table format from azure cli, run 'az account list-locations -o table' string null no
log_analytics_workspace_id log_analytics_workspace_id string null no
log_enabled Is this Diagnostic Log enabled? Defaults to true. string true no
managedby ManagedBy, eg ''. string "" no
metric_enabled Is this Diagnostic Metric enabled? Defaults to True. bool true no
multi_sub_vnet_link Flag to control creation of vnet link for dns zone in different subscription bool false no
name Name (e.g. app or cluster). string "" no
network_rule_set Manage network rules for Azure Container Registries 
object({
    default_action = optional(string)
    ip_rule = optional(list(object({
      ip_range = string
    })))
    virtual_network = optional(list(object({
      subnet_id = string
    })))
  })
 null no
private_dns_name n/a string "privatelink.azurecr.io" no
private_dns_zone_vnet_link_registration_enabled (Optional) Is auto-registration of virtual machine records in the virtual network in the Private DNS zone enabled? bool true no
public_network_access_enabled To denied public access bool false no
repository Terraform current module repo string "" no
resource_group_name A container that holds related resources for an Azure solution string null no
retention_policy Set a retention policy for untagged manifests 
object({
    days    = optional(number)
    enabled = optional(bool)
  })
 
{
  "days": 10,
  "enabled": true
}
 no
same_vnet Variable to be set when multiple acr having common DNS in same vnet. bool false no
scope_map Manages an Azure Container Registry scope map. Scope Maps are a preview feature only available in Premium SKU Container registries. 
map(object({
    actions = list(string)
  }))
 null no
storage_account_id Storage account id to pass it to destination details of diagnostic_setting. string null no
subnet_id Subnet to be used for private endpoint string null no
virtual_network_id Virtual Network to be used for private endpoint string null no

Outputs

Name Description
container_registry_admin_password The Username associated with the Container Registry Admin account - if the admin account is enabled.
container_registry_admin_username The Username associated with the Container Registry Admin account - if the admin account is enabled.
container_registry_id The ID of the Container Registry
container_registry_identity_principal_id The Principal ID for the Service Principal associated with the Managed Service Identity of this Container Registry
container_registry_identity_tenant_id The Tenant ID for the Service Principal associated with the Managed Service Identity of this Container Registry
container_registry_login_server The URL that can be used to log into the container registry
container_registry_private_dns_zone_domain DNS zone name of Azure Container Registry Private endpoints dns name records
container_registry_private_endpoint The ID of the Azure Container Registry Private Endpoint
container_registry_scope_map_id The ID of the Container Registry scope map
container_registry_token_id The ID of the Container Registry token
container_registry_webhook_id The ID of the Container Registry Webhook