module "sops" {
source = "nlamirault/sops/aws"
version = "1.0.0"
project = var.project
namespace = var.namespace
service_account = var.service_accounttags = var.tags
tags = var.tags
user_name = var.user_name
}
and variables :
project = "foo-prod"
region = "europe-west1"
##############################################################################
# External DNS
namespace = "dns"
service_account = "sops"
user_name = "foo-prod-admin"
Name | Version |
---|---|
terraform | >= 1.0.0 |
aws | >= 3.26.0 |
Name | Version |
---|---|
aws | >= 3.26.0 |
No Modules.
Name |
---|
aws_iam_policy |
aws_iam_policy_document |
aws_iam_role |
aws_iam_role_policy_attachment |
aws_kms_alias |
aws_kms_key |
aws_secretsmanager_secret |
aws_secretsmanager_secret_version |
Name | Description | Type | Default | Required |
---|---|---|---|---|
cluster_name | Name of the EKS cluster | string |
n/a | yes |
deletion_window_in_days | Duration in days after which the key is deleted after destruction of the resource, must be between 7 and 30 days | number |
30 |
no |
namespace | The Kubernetes namespace | string |
n/a | yes |
service_account | The Kubernetes service account | string |
n/a | yes |
tags | Tags for Sops | map(string) |
{ |
no |
Name | Description |
---|---|
kms_arn | Role ARN for KMS key |
role_arn_eks | Role ARN for EKS |
role_arn_users | Role ARN for users |