Skip to content

argodevops/terraform-azurerm-key-vault

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
examples/simple
examples/simple
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Requirements

Name Version
terraform >= 1.4.0
azurerm ~> 3.51.0

Providers

Name Version
azurerm ~> 3.51.0

Modules

No modules.

Resources

Name Type
azurerm_key_vault.main resource
azurerm_key_vault_access_policy.main resource
azurerm_monitor_diagnostic_setting.keyvault resource
azurerm_resource_group.main resource
azurerm_client_config.current data source
azurerm_monitor_diagnostic_categories.default data source

Inputs

Name Description Type Default Required
access_policies Map of access policies for an object_id (user, service principal, security group) to backend. 
list(object({
    object_id               = string,
    certificate_permissions = list(string),
    key_permissions         = list(string),
    secret_permissions      = list(string),
    storage_permissions     = list(string),
  }))
 [] no
diagnostics Diagnostic settings for those resources that support it. See README.md for details on configuration. 
object({
    destination   = string,
    eventhub_name = string,
    logs          = list(string),
    metrics       = list(string)
  })
 null no
enabled_for_deployment Boolean flag to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault. Defaults to false. bool false no
enabled_for_disk_encryption Boolean flag to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys. Defaults to false. bool false no
enabled_for_template_deployment Boolean flag to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault. Defaults to false. bool false no
location Azure location where resources should be deployed. any n/a yes
name Name of key vault account. any n/a yes
network_acls Network rules to apply to key vault. 
object({
    bypass                     = string,
    default_action             = string,
    ip_rules                   = list(string),
    virtual_network_subnet_ids = list(string),
  })
 null no
resource_group_name Name of resource group to deploy resources in. any n/a yes
sku_name The Name of the SKU used for this Key Vault. Possible values are standard and premium. string "standard" no
soft_delete_retention_days The number of days that items should be retained for once soft-deleted. number 7 no
tags Tags to apply to all resources created. map(string) {} no

Outputs

Name Description
id The ID of the Key Vault.
name Name of key vault created.
vault_uri The URI of the Key Vault, used for performing operations on keys and secrets.

About

Argo Azure Key Vault Module

Topics

azure terraform keyvault

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

No packages published

Languages