module "sops" {
source = "nlamirault/sops/aws"
version = "1.0.0"
project = var.project
namespace = var.namespace
service_account = var.service_accounttags = var.tags
tags = var.tags
user_name = var.user_name
}and variables :
project = "foo-prod"
region = "europe-west1"
##############################################################################
# External DNS
namespace = "dns"
service_account = "sops"
user_name = "foo-prod-admin"| Name | Version |
|---|---|
| terraform | >= 1.0.0 |
| aws | >= 3.26.0 |
| Name | Version |
|---|---|
| aws | >= 3.26.0 |
No Modules.
| Name |
|---|
| aws_iam_policy |
| aws_iam_policy_document |
| aws_iam_role |
| aws_iam_role_policy_attachment |
| aws_kms_alias |
| aws_kms_key |
| aws_secretsmanager_secret |
| aws_secretsmanager_secret_version |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| cluster_name | Name of the EKS cluster | string |
n/a | yes |
| deletion_window_in_days | Duration in days after which the key is deleted after destruction of the resource, must be between 7 and 30 days | number |
30 |
no |
| namespace | The Kubernetes namespace | string |
n/a | yes |
| service_account | The Kubernetes service account | string |
n/a | yes |
| tags | Tags for Sops | map(string) |
{ |
no |
| Name | Description |
|---|---|
| kms_arn | Role ARN for KMS key |
| role_arn_eks | Role ARN for EKS |
| role_arn_users | Role ARN for users |