Create variables to manage KMS enablement for RDS and Elasticache (#20)

Author: clarissalimab

postgres-variables.tf

@@ -28,6 +28,12 @@ variable "postgres_enabled" {
   default     = false
 }
 
+variable "postgres_enable_kms" {
+  type        = bool
+  description = "Enable KMS encryption"
+  default     = true
+}
+
 variable "postgres_engine_version" {
   description = "Version for RDS database engine"
   type        = string

postgres.tf

@@ -16,6 +16,7 @@ module "postgres" {
   storage_encrypted        = var.postgres_storage_encrypted
   subnet_ids               = module.network.private_subnet_ids
   vpc_id                   = module.network.vpc.id
+  enable_kms               = var.postgres_enable_kms
 }
 
 resource "random_id" "parameter_group" {

redis-variables.tf

@@ -4,6 +4,12 @@ variable "redis_enabled" {
   default     = false
 }
 
+variable "redis_enable_kms" {
+  description = "Enable KMS encryption"
+  type        = bool
+  default     = true
+}
+
 variable "redis_name" {
   description = "Name of the ElastiCache instance for Redis"
   type        = string

redis.tf

@@ -10,6 +10,7 @@ module "redis" {
   replica_count       = var.redis_replica_count
   subnet_ids          = module.network.private_subnet_ids
   vpc_id              = module.network.vpc.id
+  enable_kms          = var.redis_enable_kms
 }
 
 module "redis_token" {