variable "name" { description = "Name for both service accounts. The GCP SA will be truncated to the first 30 chars if necessary." type = string } variable "project_id" { description = "GCP project ID" type = string } variable "gcp_sa_name" { description = "Name for the Google service account; overrides `var.name`." type = string default = null } variable "use_existing_gcp_sa" { description = "Use an existing Google service account instead of creating one" type = bool default = false } variable "cluster_name" { description = "Cluster name. Required if using existing KSA." type = string default = "" } variable "location" { description = "Cluster location (region if regional cluster, zone if zonal cluster). Required if using existing KSA." type = string default = "" } variable "k8s_sa_name" { description = "Name for the Kubernetes service account; overrides `var.name`." type = string default = null } variable "namespace" { description = "Namespace for the Kubernetes service account" type = string default = "default" } variable "use_existing_k8s_sa" { description = "Use an existing kubernetes service account instead of creating one" type = bool default = false } variable "automount_service_account_token" { description = "Enable automatic mounting of the service account token" type = bool default = false } variable "roles" { description = "A list of roles to be added to the created service account" type = list(string) default = [] } variable "impersonate_service_account" { description = "An optional service account to impersonate for gcloud commands. If this service account is not specified, the module will use Application Default Credentials." type = string default = "" }