Terraform module for deploying Hashicorp Vault policies and optionally Key/Value secrets
| Name | Version |
|---|---|
| terraform | >= 1.3 |
| vault | >= 3.8 |
| Name | Version |
|---|---|
| vault | >= 3.8 |
No modules.
| Name | Type |
|---|---|
| vault_kv_secret.kv_secret | resource |
| vault_kv_secret_v2.kv_secret_v2 | resource |
| vault_policy.policy_read | resource |
| vault_policy.policy_write | resource |
| vault_policy_document.policy_document_read | data source |
| vault_policy_document.policy_document_write | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| kv_version | the KV secrets engine version to be used | string |
"1" |
no |
| mount | the vault mount for the secret | string |
n/a | yes |
| path | the vault path inside the vault mount | string |
n/a | yes |
| policy_name | the name for the policies | string |
n/a | yes |
| policy_read | if the read policy should be created | bool |
true |
no |
| policy_read_capabilities | the capabilities for the read policy | list(string) |
[ |
no |
| policy_write | if the write policy should be created | bool |
false |
no |
| policy_write_capabilities | the capabilities for the write policy | list(string) |
[ |
no |
| secret | the secrets to be put in the vault path | map(string) |
{} |
no |
| Name | Description |
|---|---|
| read_policy_name | the name of the read policy |
| write_policy_name | the name of the write policy |