Creates a vault server seal HCL configuration stanza (https://www.vaultproject.io/docs/configuration/seal)
Introduced: v5.0.0
:create:delete
| Name | Type | Default | Description |
|---|---|---|---|
owner |
String | vault |
Owner of the generated configuration file |
group |
String | vault |
Group of the generated configuration file |
mode |
String | '0640' |
Filemode of the generated configuration file |
config_file |
String | /etc/vault.d/vault.hcl |
Configuration file to generate stanza in |
cookbook |
String | hashicorp-vault |
Cookbook to source configuration file template from |
template |
String | hcl.erb |
Template to use to generate the configuration file |
sensitive |
True, False | true |
Set template to sensitive by default |
type |
String, Symbol | new_resource.name |
Configuration stanza type |
options |
Hash | {} |
Options for the configuration stanza |
hashicorp_vault_config_seal 'awskms' do
options(
'region' => 'us-east-1',
'access_key' => 'AKIAIOSFODNN7EXAMPLE',
'secret_key' => 'wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY',
'kms_key_id' => '19ec80b0-dfdd-4d97-8164-c6examplekey',
'endpoint' => 'https://vpce-0e1bb1852241f8cc6-pzi0do8n.kms.us-east-1.vpce.amazonaws.com'
)
end