HomeTerraform Modulekeyvault

keyvault

dodevops/keyvault/azure

Terraform Module HCL AZURE

Highly opinionaged management of keyvault resources in Azure

Install
module "keyvault" {
source = "dodevops/keyvault/azure"
version = "3.0.0"
}
plain text: /constructs/tfmod-dodevops-keyvault-azure/install.txt
⭐ Source on GitHub 📦 Registry page
README

Azure Keyvault management Introduction This module manages a keyvault resource in Azure with the required permissions. Usage Instantiate the module by calling it from Terraform like this: ``hcl module "azure-keyvault" { source = "dodevops/keyvault/azure" version = " " (...) } ` Requirements No requirements. Providers The following providers are used by this module: - azurerm Modules No modules. Resources The following resources are used by this module: - azurerm_key_vault.keyvault (resource) - azurerm_key_vault_access_policy.keyvault-access-policy-objectid-apps-createonly (resource) - azurerm_key_vault_access_policy.keyvault-access-policy-objectid-apps-fullaccess (resource) - azurerm_key_vault_access_policy.keyvault-access-policy-objectid-apps-readonly (resource) - azurerm_key_vault_access

Inputs (19)
NameTypeDescriptionDefault
network_acls_virtual_network_subnet_idslist(string)List of one or more Subnet IDs which should be able to access this Key Vault. If required
locationstringThe azure location used for azure required
azure_tenant_idstringThe tenant id used for azure required
projectstringThree letter project key required
stagestringStage for this ressource group required
resource_groupstringAzure Resource Group to use required
network_acls_ip_ruleslist(string)List of one or more IP Addresses, or CIDR Blocks which should be able to access required
allowed_objectid_app_tuples_createonlylist(string)A list of object IDs with allowed apps (in the form of <objectid>:<app>) that ar[]
enable_auditboolEnable audit of keyvault changesfalse
tagsmap(any)Map of tags for the resources{}
allowed_objectids_fullaccesslist(string)A list of object IDs that are allowed to fully access the keyvault elements (wit[]
soft_delete_retention_daysnumberThe number of days that items should be retained for once soft-deleted. This val14
network_acls_bypassstringSpecifies which traffic can bypass the network rules. Possible values are AzureS"None"
allowed_objectids_createonlylist(string)A list of object IDs that are allowed to create (but not read or change) element[]
skustringKeyvault sku"standard"
allowed_objectid_app_tuples_fullaccesslist(string)A list of object IDs with allowed apps (in the form of <objectid>:<app>) that ar[]
allowed_objectids_readonlylist(string)A list of object IDs that are allowed to read elements in the keyvault[]
allowed_objectid_app_tuples_readonlylist(string)A list of object IDs with allowed apps (in the form of <objectid>:<app>) that ar[]
network_acls_default_actionstringThe Default Action to use when no rules match from ip_rules / virtual_network_su"Deny"
Outputs (1)
vault_id
Resources (4)
azurerm_key_vaultazurerm_key_vault_access_policyazurerm_monitor_diagnostic_settingazurerm_storage_account
Topics & Tags
terraform-moduleazurerm-key-vaultazurerm
Details
FrameworkTerraform Module
LanguageHCL
Version3.0.0
Cloud AZURE
★ Stars1
Forks2
Total downloads5.6k
Inputs19
Outputs1
Resources4
LicenseMIT
Namespacedodevops
Updated
Similar packages
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

★ 210terraform-module
avm-ptn-alz

Terraform Azure Verified Pattern Module for Azure Landing Zone

★ 122terraform-module
avm-res-keyvault-vault

Terraform Azure Verified Resource Module for Key Vault

★ 45terraform-module
next-js

Terraform module for building and deploying Next.js apps to AWS. Supports SSR (L

★ 1.5kterraform-module
Tools
⚖ Compare with another construct → 📋 View data schema