terraform-vault-approle: An HCL repository from devops-adeel

Terraform Vault Auth Approle

This terraform module creates an approle auth role with a secret-id. The module also creates an identity entity & alias, and then makes it a member of a pre-existing Vault Identity Entity Group to which a Vault ACL policy is bound to.

Usage:

module "vault_approle" {
  source            = "git::https://github.com/devops-adeel/terraform-vault-approle.git?ref=v0.7.0"
  application_name  = "tdp"
  env               = "dev"
  service           = "web"
  identity_group_id = module.static_secrets.identity_group_id
  mount_accessor    = vault_auth_backend.default.accessor
}

Requirements

No requirements.

Providers

Name	Version
vault	n/a

Modules

No modules.

Resources

Name	Type
vault_approle_auth_backend_role.default	resource
vault_approle_auth_backend_role_secret_id.default	resource
vault_identity_entity.default	resource
vault_identity_entity_alias.default	resource
vault_identity_group_member_entity_ids.default	resource

Inputs

Name	Description	Type	Default	Required
application_name	Name of the application/customer	`string`	n/a	yes
env	The environment name the identity principal will operate in	`string`	`"dev"`	no
identity_group_id	ID of Vault Identity Group to which a vault policy is bound to	`string`	n/a	yes
mount_accessor	The Accessor ID of the Approle Auth Backend.	`string`	n/a	yes
service	The name of the service attached to the principal approle	`string`	`"platform"`	no

Outputs

Name	Description
approle_id	Approle ID
approle_secret	Approle Secret ID
backend_path	The Auth Backend path mounted upon