byok-template
clumio-code/byok-template/clumio
Terraform module containing resources required for Clumio BYOK.
Install
README
Clumio BYOK Terraform Module Terraform module to install the Clumio required AWS BYOK resources in the customer AWS account. Usage: This module is to be used along with the resource clumio_wallet as some of the inputs for the module are obtained from the output of clumio_wallet resource. Below is an example of using the module: ``hcl provider clumio{ clumio_api_token = var.clumio_api_token clumio_api_base_url = var.clumio_api_base_url } provider aws {} data aws_caller_identity current { } data aws_region current { } resource "clumio_wallet" "test_wallet" { account_native_id = data.aws_caller_identity.current.account_id aws_region = data.aws_region.current.name } ################################################################################ Clumio BYOK Module #############################
Inputs (10)
| Name | Type | Description | Default |
|---|---|---|---|
| clumio_account_id | string | Clumio account ID. | |
| token | string | The AWS integration ID token. | |
| account_native_id | string | Wallet account native ID. | |
| aws_region | string | The Wallet AWS region to deploy resources. | "" |
| external_id | string | The external ID to use when assuming the role. | "" |
| role_name | string | The name to use for the role that Clumio will use to manage the key. | "ClumioKMSRole" |
| existing_cmk_id | string | The ID of an existing multi-region CMK to use (optional). | "" |
| deletion_window_in_days | number | Primary and replica key deletion window in days. | 30 |
| key_tags | map(string) | Tags for mutli-region CMK to be created. Not used if existing_cmk_id is provided | {} |
| key_alias_name | string | Alias name for multi-region CMK to be used (optional). Default value is clumio-b | "clumio-byok" |