Tips-Of-Mine/terraform
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
terraform/quickstart/101-key-vault-key/variables.tf
Tom Archer 6ac4eb3abf
User Story 60501: 101-key-vault-key (#203) 
* New sample (converted from Bicep via OpenAI)
2023-04-05 10:55:02 +08:00

74 lines
2.2 KiB
HCL
Raw Permalink Blame History

variable "resource_group_location" {
type = string
description = "Location for all resources."
default = "eastus"
}
variable "resource_group_name_prefix" {
type = string
description = "Prefix of the resource group name that's combined with a random ID so name is unique in your Azure subscription."
default = "rg"
}
variable "vault_name" {
type = string
description = "The name of the key vault to be created. The value will be randomly generated if blank."
default = ""
}
variable "key_name" {
type = string
description = "The name of the key to be created. The value will be randomly generated if blank."
default = ""
}
variable "sku_name" {
type = string
description = "The SKU of the vault to be created."
default = "standard"
validation {
condition = contains(["standard", "premium"], var.sku_name)
error_message = "The sku_name must be one of the following: standard, premium."
}
}
variable "key_permissions" {
type = list(string)
description = "List of key permissions."
default = ["List", "Create", "Delete", "Get", "Purge", "Recover", "Update", "GetRotationPolicy", "SetRotationPolicy"]
}
variable "secret_permissions" {
type = list(string)
description = "List of secret permissions."
default = ["Set"]
}
variable "key_type" {
description = "The JsonWebKeyType of the key to be created."
default = "RSA"
type = string
validation {
condition = contains(["EC", "EC-HSM", "RSA", "RSA-HSM"], var.key_type)
error_message = "The key_type must be one of the following: EC, EC-HSM, RSA, RSA-HSM."
}
}
variable "key_ops" {
type = list(string)
description = "The permitted JSON web key operations of the key to be created."
default = ["decrypt", "encrypt", "sign", "unwrapKey", "verify", "wrapKey"]
}
variable "key_size" {
type = number
description = "The size in bits of the key to be created."
default = 2048
}
variable "msi_id" {
type = string
description = "The Managed Service Identity ID. If this value isn't null (the default), 'data.azurerm_client_config.current.object_id' will be set to this value."
default = null
}
Reference in New Issue View Git Blame Copy Permalink