terraform-aws-kms
Description
Terraform module which creates a KMS Customer Master Key (CMK) and its alias.
Table of Content
Prerequisites
This module doesn't have any existing resource requirements
Dependencies
This Terraform module have no dependencies to another modules
Usage
module "cmk_key" {
source = "github.com/traveloka/terraform-aws-kms-cmk?ref=v0.1.0"
product_domain = "bei"
alias_name = "secret-parameter"
environment = "production"
description = "Key to encrypt and decrypt secret parameters"
key_policy = "${data.aws_iam_policy_document.cmk_key_policy.json}"
}
Terraform Version
The latest stable version of Terraform which this module tested working is Terraform 0.13.7
on 2021/10/07
Requirements
Name | Version |
---|---|
terraform | >= 0.13 |
Providers
Name | Version |
---|---|
aws | n/a |
Modules
No modules.
Resources
Name | Type |
---|---|
aws_kms_alias.key_alias | resource |
aws_kms_key.key | resource |
Inputs
Name | Description | Type | Default | Required |
---|---|---|---|---|
additional_tags | Additional tags to be added to kms-cmk | map(string) |
{} |
no |
alias_name | The name of the key alias | string |
n/a | yes |
deletion_window_in_days | The duration in days after which the key is deleted after destruction of the resource | string |
30 |
no |
description | The description of this KMS key | string |
n/a | yes |
environment | The environment this KMS key belongs to | string |
n/a | yes |
key_policy | The policy of the key usage | string |
"" |
no |
product_domain | The name of the product domain | string |
n/a | yes |
Outputs
Name | Description |
---|---|
key_alias_arn | The arn of the key alias |
key_alias_name | The name of the key alias |
key_arn | The arn of the key |
key_id | The globally unique identifier for the key |
Contributing
This module accepting or open for any contributions from anyone, please see the CONTRIBUTING.md for more detail about how to contribute to this module.
License
This module is under Apache License 2.0 - see the LICENSE file for details.