Inputs

The following input variables are supported:

bastion_domains

Description: The domain names of the bastion

Type: list(string)

Default: n/a

bastion_image_version

Description: The version of the image to use for the deployment

Type: string

Default: "17b5034568b63f0a777bc1f5b7ef907c0e00fa2a"

bastion_port

Description: The port the bastion should use for the ssh server

Type: number

Default: 45459

burstable_nodes_enabled

Description: Whether to allow pods to schedule on burstable nodes

Type: bool

Default: true

controller_nodes_enabled

Description: Whether to allow pods to schedule on EKS Node Group nodes (controller nodes)

Type: bool

Default: true

panfactum_scheduler_enabled

Description: Whether to use the Panfactum pod scheduler with enhanced bin-packing

Type: bool

Default: true

pull_through_cache_enabled

Description: Whether to use the ECR pull through cache for the deployed images

Type: bool

Default: true

sla_target

Description: The Panfactum SLA level for the module deployment. 1 = lowest uptime (99.9%), lowest cost — 3 = highest uptime (99.999%), highest Cost

Type: number

Default: 3

spot_nodes_enabled

Description: Whether to allow pods to schedule on spot nodes

Type: bool

Default: true

ssh_cert_lifetime_seconds

Description: The lifetime of SSH certs provisioned by Vault

Type: number

Default: 28800

vpa_enabled

Description: Whether the VPA resources should be enabled

Type: bool

Default: true

Outputs

The following outputs are exported:

bastion_domains

Description: The domains the SSH server is available on

bastion_host_public_key

Description: The bastion host’s public key for mutual verification

bastion_port

Description: The port the SSH server is available on in each domain

Providers

The following providers are needed by this module:

• aws (6.38.0)

• kubectl (2.1.6)

• kubernetes (2.35.0)

• pf (0.0.7)

• random (3.8.1)

• tls (4.2.1)

• vault (4.8.0)