kms-key
cloudposse/kms-key/aws
Terraform module to provision a KMS key with alias
terraform-aws-kms-key   [![README Header][readme_header_img]][readme_header_link] [![Cloud Posse][logo]](https://cpco.io/homepage) Terraform module to provision a KMS key with alias. Can be used with chamber for managing secrets by storing them in Amazon EC2 Systems Manager Parameter Store. https://aws.amazon.com/systems-manager/features https://aws.amazon.com/blogs/mt/the-right-way-to-store-secrets-using-parameter-store --- This project is part of our comprehensive "SweetOps" approach towards DevOps. [ ][share_email] [ ][share_googleplus] [ ][share_facebook] [ ][share_reddit] [ ][share_linkedin] [ ][share_twitter] ![Terraform Open Source Modules][terraform_
| Name | Type | Description | Default |
|---|---|---|---|
| context | any | Single object for setting entire context at once. See description of individual | {
"additional_tag_map": {},
"attribu |
| id_length_limit | number | Limit `id` to this many characters (minimum 6). Set to `0` for unlimited length. | null |
| stage | string | ID element. Usually used to indicate role, e.g. 'prod', 'staging', 'source', 'bu | null |
| additional_tag_map | map(string) | Additional key-value pairs to add to each map in `tags_as_list_of_maps`. Not add | {} |
| description | string | The description of the key as viewed in AWS console | "Parameter Store KMS master key" |
| tenant | string | ID element _(Rarely used, not included by default)_. A customer identifier, indi | null |
| name | string | ID element. Usually the component or solution name, e.g. 'app' or 'jenkins'. Thi | null |
| regex_replace_chars | string | Terraform regular expression (regex) string. Characters matching the regex will | null |
| deletion_window_in_days | number | Duration in days after which the key is deleted after destruction of the resourc | 10 |
| multi_region | bool | Indicates whether the KMS key is a multi-Region (true) or regional (false) key. | false |
| label_value_case | string | Controls the letter case of ID elements (labels) as included in `id`, set as tag | null |
| alias | string | The display name of the alias. The name must start with the word `alias` followe | "" |
| policy | string | A valid KMS policy JSON document. Note that if the policy document is not specif | "" |
| customer_master_key_spec | string | Specifies whether the key contains a symmetric key or an asymmetric key pair and | "SYMMETRIC_DEFAULT" |
| namespace | string | ID element. Usually an abbreviation of your organization name, e.g. 'eg' or 'cp' | null |
| attributes | list(string) | ID element. Additional attributes (e.g. `workers` or `cluster`) to add to `id`, | [] |
| label_key_case | string | Controls the letter case of the `tags` keys (label names) for tags generated by | null |
| descriptor_formats | any | Describe additional descriptors to be output in the `descriptors` output map. Ma | {} |
| enable_key_rotation | bool | Specifies whether key rotation is enabled | true |
| enabled | bool | Set to false to prevent the module from creating any resources | null |
alias_name — Alias namekey_arn — Key ARNkey_id — Key IDalias_arn — Alias ARNTerraform Module to define a consistent naming convention by (namespace, stage,
Terraform module for building and deploying Next.js apps to AWS. Supports SSR (L
Terraform module for provisioning an EKS cluster
Terraform module to generate well-formed JSON documents (container definitions)