forked from hashicorp/microservices-architecture-on-aws
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsecrets-manager.tf
26 lines (21 loc) · 936 Bytes
/
secrets-manager.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
resource "aws_secretsmanager_secret" "consul_gossip_key" {
name_prefix = "${local.project_tag}-gossip-key-"
}
resource "aws_secretsmanager_secret_version" "consul_gossip_key" {
secret_id = aws_secretsmanager_secret.consul_gossip_key.id
secret_string = random_id.consul_gossip_key.b64_std
}
resource "aws_secretsmanager_secret" "consul_bootstrap_token" {
name_prefix = "${local.project_tag}-bootstrap-token-"
}
resource "aws_secretsmanager_secret_version" "consul_bootstrap_token" {
secret_id = aws_secretsmanager_secret.consul_bootstrap_token.id
secret_string = random_uuid.consul_bootstrap_token.id
}
resource "aws_secretsmanager_secret" "consul_root_ca_cert" {
name_prefix = "${local.project_tag}-root-ca-cert-"
}
resource "aws_secretsmanager_secret_version" "consul_root_ca_cert" {
secret_id = aws_secretsmanager_secret.consul_root_ca_cert.id
secret_string = tls_self_signed_cert.ca_cert.cert_pem
}