aws-secret

Adaptavist/aws-secret/module

Terraform Module HCL MODULE

Install

module "aws-secret" {

source = "Adaptavist/aws-secret/module"

version = "2.0.1"

}

plain text: /constructs/tfmod-adaptavist-aws-secret-module/install.txt

⭐ Source on GitHub 📦 Registry page

README

Secrets module This module needs to be used in conjunction with pipe-secret-generator when used in shared AWS accounts or secret-generator) when used in deadicated AWS account. This module wraps a CloudFomation stack which calls a common secret generation Lambda (created by pipe-secret-generator or secret-generator) to generate random secret values. Because the secret has been populated using a Lambda there is minimal chance of leakage. This module also supports importing existing secrets. How it works pipe-secret-generator or secret-generator creates a Lambda which processes the required events for a CloudFormation [custom resource] (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/template-custom-resources-lambda.html), the custom resource events which follow a CRUD like op

Inputs (8)

Name	Type	Description	Default
stage	string		required
tags	map(string)		required
secret_ssm_path	string		required
respect_initial_value	bool		`true`
secret_lambda_function_name	string		`"ssm-secret-generator"`
regions	list(string)		`[]`
name_suffix	string	suffix for stack name if needed for avoiding conflicts	`""`
secret_length	number		`60`

Resources (2)

aws_cloudformation_stackrandom_string

Details

FrameworkTerraform Module

LanguageHCL

Version2.0.1

Cloud MODULE

★ Stars0

Forks1

Total downloads1.8M

Inputs8

Resources2

LicenseApache-2.0

NamespaceAdaptavist

Updated

Tools

⚖ Compare with another construct → 📋 View data schema