https://github.com/truefoundry/terraform-google-truefoundry-cloud-dns

https://github.com/truefoundry/terraform-google-truefoundry-cloud-dns

Last synced: 3 months ago
JSON representation

• Host: GitHub
• URL: https://github.com/truefoundry/terraform-google-truefoundry-cloud-dns
• Owner: truefoundry
• License: apache-2.0
• Created: 2025-11-26T17:18:00.000Z (7 months ago)
• Default Branch: main
• Last Pushed: 2026-01-09T19:39:27.000Z (6 months ago)
• Last Synced: 2026-02-13T08:05:11.268Z (4 months ago)
• Language: HCL
• Size: 43.9 KB
• Stars: 0
• Watchers: 0
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# terraform-google-truefoundry-dns

## Requirements

| Name | Version |

|------|---------|

|  [terraform](#requirement\_terraform) | ~> 1.10 |

|  [google](#requirement\_google) | 6.47 |

## Providers

| Name | Version |

|------|---------|

|  [google](#provider\_google) | 6.47 |

## Modules

No modules.

## Resources

| Name | Type |

|------|------|

| [google_dns_managed_zone.truefoundry_dns_zone](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/resources/dns_managed_zone) | resource |

| [google_project_iam_custom_role.truefoundry_dns_manger_role](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/resources/project_iam_custom_role) | resource |

| [google_project_iam_member.truefoundry_dns_service_account_role_binding](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/resources/project_iam_member) | resource |

| [google_service_account.truefoundry_dns_service_account](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/resources/service_account) | resource |

| [google_service_account_iam_member.truefoundry_dns_workload_identity_binding](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/resources/service_account_iam_member) | resource |

| [google_dns_managed_zone.existing_zone](https://registry.terraform.io/providers/hashicorp/google/6.47/docs/data-sources/dns_managed_zone) | data source |

## Inputs

| Name | Description | Type | Default | Required |

|------|-------------|------|---------|:--------:|

|  [cert\_manager\_namespace](#input\_cert\_manager\_namespace) | Kubernetes namespace where cert-manager is installed | `string` | `"cert-manager"` | no |

|  [cert\_manager\_service\_account](#input\_cert\_manager\_service\_account) | Kubernetes service account name for cert-manager | `string` | `"cert-manager"` | no |

|  [cluster\_name](#input\_cluster\_name) | n/a | `string` | n/a | yes |

|  [dns\_name](#input\_dns\_name) | DNS name. e.g - test.example.com. | `string` | n/a | yes |

|  [dns\_role\_id](#input\_dns\_role\_id) | Custom DNS role ID | `string` | `"tfyDNSManagerRole"` | no |

|  [dns\_role\_title](#input\_dns\_role\_title) | Custom DNS role title | `string` | `"dns-manager"` | no |

|  [dns\_service\_account\_name](#input\_dns\_service\_account\_name) | DNS Service Account Name | `string` | `"cert-manager-dns"` | no |

|  [project\_id](#input\_project\_id) | Project ID | `string` | n/a | yes |

|  [truefoundry\_dns\_manger\_role\_id\_override\_enabled](#input\_truefoundry\_dns\_manger\_role\_id\_override\_enabled) | Enable override for TrueFoundry DNS Manager Role ID | `bool` | `false` | no |

|  [truefoundry\_dns\_manger\_role\_id\_override\_name](#input\_truefoundry\_dns\_manger\_role\_id\_override\_name) | Override name for TrueFoundry DNS Manager Role ID | `string` | `""` | no |

|  [truefoundry\_dns\_manger\_role\_name\_override\_enabled](#input\_truefoundry\_dns\_manger\_role\_name\_override\_enabled) | Enable override for TrueFoundry DNS Manager Role name | `bool` | `false` | no |

|  [truefoundry\_dns\_manger\_role\_override\_name](#input\_truefoundry\_dns\_manger\_role\_override\_name) | Override name for TrueFoundry DNS Manager Role | `string` | `""` | no |

|  [truefoundry\_dns\_service\_account\_name\_override\_enabled](#input\_truefoundry\_dns\_service\_account\_name\_override\_enabled) | Enable override for TrueFoundry DNS Service Account name | `bool` | `false` | no |

|  [truefoundry\_dns\_service\_account\_override\_name](#input\_truefoundry\_dns\_service\_account\_override\_name) | Override name for TrueFoundry DNS Service Account. | `string` | `""` | no |

|  [use\_existing\_dns\_zone](#input\_use\_existing\_dns\_zone) | Flag to create DNS zone | `bool` | `false` | no |

|  [zone\_name](#input\_zone\_name) | Zone name. e.g - tfy-dns | `string` | n/a | yes |

## Outputs

| Name | Description |

|------|-------------|

|  [dns\_zone\_nameservers](#output\_dns\_zone\_nameservers) | Name servers for the DNS zone (only available if DNS zone is created) |

|  [project\_id](#output\_project\_id) | GCP project ID for cert-manager DNS configuration |

|  [service\_account\_email](#output\_service\_account\_email) | GCP service account email for cert-manager |

|  [workload\_identity\_annotation](#output\_workload\_identity\_annotation) | Annotation to add to cert-manager Kubernetes service account |