Tips-Of-Mine/terraform-azure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: Tips-Of-Mine:101-attestation-provider
Branches Tags
Tips-Of-Mine:master Tips-Of-Mine:UserStory335474 Tips-Of-Mine:UserStory281947b Tips-Of-Mine:UserStory330782 Tips-Of-Mine:UserStory281947 Tips-Of-Mine:f-101-aks-standard-lb-and-vmss Tips-Of-Mine:UserStory330721 Tips-Of-Mine:UserStory327082 Tips-Of-Mine:UserStory327081 Tips-Of-Mine:UserStory327080 Tips-Of-Mine:UserStory327079 Tips-Of-Mine:301-machine-learning-hub-spoke-secure Tips-Of-Mine:301-hub-spoke Tips-Of-Mine:201-vmss-jumpbox Tips-Of-Mine:UserStory284326 Tips-Of-Mine:101-vm-with-infrastructure Tips-Of-Mine:101-devtest-labs Tips-Of-Mine:101-attestation-provider Tips-Of-Mine:101-authn-managed-identity Tips-Of-Mine:UserStory316624 Tips-Of-Mine:202-machine-learning-moderately-secure-existing-VNet Tips-Of-Mine:UserStory316612 Tips-Of-Mine:cron Tips-Of-Mine:bump-changed-files Tips-Of-Mine:release/358 Tips-Of-Mine:users/GitHubPolicyService/46ac6b72-fb6d-4399-a02a-714c519189f1 Tips-Of-Mine:rebrand
Tips-Of-Mine:release/UserStory316624
..
compare: Tips-Of-Mine:101-authn-managed-identity
Branches Tags
Tips-Of-Mine:master Tips-Of-Mine:UserStory335474 Tips-Of-Mine:UserStory281947b Tips-Of-Mine:UserStory330782 Tips-Of-Mine:UserStory281947 Tips-Of-Mine:f-101-aks-standard-lb-and-vmss Tips-Of-Mine:UserStory330721 Tips-Of-Mine:UserStory327082 Tips-Of-Mine:UserStory327081 Tips-Of-Mine:UserStory327080 Tips-Of-Mine:UserStory327079 Tips-Of-Mine:301-machine-learning-hub-spoke-secure Tips-Of-Mine:301-hub-spoke Tips-Of-Mine:201-vmss-jumpbox Tips-Of-Mine:UserStory284326 Tips-Of-Mine:101-vm-with-infrastructure Tips-Of-Mine:101-devtest-labs Tips-Of-Mine:101-attestation-provider Tips-Of-Mine:101-authn-managed-identity Tips-Of-Mine:UserStory316624 Tips-Of-Mine:202-machine-learning-moderately-secure-existing-VNet Tips-Of-Mine:UserStory316612 Tips-Of-Mine:cron Tips-Of-Mine:bump-changed-files Tips-Of-Mine:release/358 Tips-Of-Mine:users/GitHubPolicyService/46ac6b72-fb6d-4399-a02a-714c519189f1 Tips-Of-Mine:rebrand
Tips-Of-Mine:release/UserStory316624

1 Commits
101-attest ... 101-authn-

Author SHA1 Message Date
zjhe
3c17fdd146 bump azurerm provider to v3 2024-10-04 08:56:30 +08:00
2 changed files with 2 additions and 11 deletions
Expand all files Collapse all files

11
quickstart/101-attestation-provider/main.tf
View File

@ -21,7 +21,7 @@ resource "tls_private_key" "signing_cert" {
resource "tls_self_signed_cert" "attestation" { resource "tls_self_signed_cert" "attestation" {
count = local.create_signing_cert ? 1 : 0 count = local.create_signing_cert ? 1 : 0
private_key_pem = tls_private_key.signing_cert[0].private_key_pem private_key_pem = tls_private_key.signing_cert[0].private_key_pem
validity_period_hours = 12 validity_period_hours = 12
allowed_uses = [ allowed_uses = [
"cert_signing", "cert_signing",
@ -40,13 +40,4 @@ resource "azurerm_attestation_provider" "corp_attestation" {
name = "${var.attestation_provider_name}${random_string.attestation_suffix.result}" name = "${var.attestation_provider_name}${random_string.attestation_suffix.result}"
resource_group_name = azurerm_resource_group.rg.name resource_group_name = azurerm_resource_group.rg.name
policy_signing_certificate_data = try(tls_self_signed_cert.attestation[0].cert_pem, file(var.cert_path)) policy_signing_certificate_data = try(tls_self_signed_cert.attestation[0].cert_pem, file(var.cert_path))
#https://github.com/hashicorp/terraform-provider-azurerm/issues/21998#issuecomment-1573312297
lifecycle {
ignore_changes = [
"open_enclave_policy_base64",
"sev_snp_policy_base64",
"sgx_enclave_policy_base64",
"tpm_policy_base64",
]
}
} }

2
quickstart/101-attestation-provider/providers.tf
View File

@ -4,7 +4,7 @@ terraform {
required_providers { required_providers {
azurerm = { azurerm = {
source = "hashicorp/azurerm" source = "hashicorp/azurerm"
version = "~>3.0" version = "~>2.0"
} }
random = { random = {
source = "hashicorp/random" source = "hashicorp/random"