ca
4ops/ca/tls
Terraform module
Certificate authority Creates self-signed or externally signed certificate authority. Requirements | Name | Version | |------|---------| | terraform | >= 0.13 | | tls | ~> 3.0.0 | Providers | Name | Version | |------|---------| | tls | ~> 3.0.0 | Inputs | Name | Description | Type | Default | Required | |------|-------------|------|---------|:--------:| | algorithm | The name of the algorithm to use for the key. Currently-supported values are RSA and ECDSA. | string | "RSA" | no | | allowed\_uses | List of keywords each describing a use that is permitted for the issued certificate. Affects self-signed certificate only. | list(string) | [ "digital_signature", "key_encipherment", "cert_signing" ] | no | | common\_name | Common name. | string | "ca" | no | | days | The number of days after in
| Name | Type | Description | Default |
|---|---|---|---|
| signed_cert | string | Signed cert request content. | "" |
| days | number | The number of days after initial issuing that the certificate will become invali | 3650 |
| common_name | string | Common name. | "ca" |
| self_signed | bool | If true, root CA will be created. | true |
| allowed_uses | list(string) | List of keywords each describing a use that is permitted for the issued certific | [
"digital_signature",
"key_encipher |
| algorithm | string | The name of the algorithm to use for the key. Currently-supported values are `RS | "RSA" |
| ecdsa_curve | string | When algorithm is `ECDSA`, the name of the elliptic curve to use. | "P384" |
| rsa_bits | number | When algorithm is `RSA`, the size of the generated RSA key in bits. | 4096 |
| sign | map(object({ cert_request_ | Map of certificate signing requests. The key of the item is not used. | {} |
cert_request — Certificate request for creating certificate externally. Content in PEM format.signed — Signed certificates in PEM format.algorithm — This CA key algorithm.key — Private key in PEM format.cert — Certificate in PEM format.