{"id":25115745,"url":"https://github.com/devops-rob/terraform-gcp-tls","last_synced_at":"2026-01-16T00:38:55.378Z","repository":{"id":110462813,"uuid":"389581267","full_name":"devops-rob/terraform-gcp-tls","owner":"devops-rob","description":"Create self-signed TLS certicates, encrypt keys and store in GCS Bucket","archived":false,"fork":false,"pushed_at":"2021-08-06T09:23:41.000Z","size":14,"stargazers_count":1,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-02-08T02:35:29.641Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/devops-rob.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-07-26T09:38:14.000Z","updated_at":"2021-08-06T09:19:07.000Z","dependencies_parsed_at":null,"dependency_job_id":"7277ae9d-a053-4512-9125-07d9d54f6f27","html_url":"https://github.com/devops-rob/terraform-gcp-tls","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-gcp-tls","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-gcp-tls/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-gcp-tls/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-gcp-tls/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/devops-rob","download_url":"https://codeload.github.com/devops-rob/terraform-gcp-tls/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246811183,"owners_count":20837745,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-02-08T02:33:55.393Z","updated_at":"2026-01-16T00:38:55.367Z","avatar_url":"https://github.com/devops-rob.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Self-signed TLS cetificates stored in GCS Bucket\n\nThis module creates a [Certificate Authority](https://www.ssl.com/faqs/what-is-a-certificate-authority/), a [self-signed certificate](https://sectigostore.com/page/what-is-a-self-signed-certificate/) signed by the Certificate Authority and stores all certificates and keys in a GCS Bucket. All keys are encrypted using Google KMS before they are stored in the GCS Bucket.\n\nThis is useful for the deployment of systems in GCP that may require TLS when bootstrapping the system components. Access to the resulting certificate and key material is based on [GCP's Identity and Access Management domain model.](https://cloud.google.com/iam) A Service account will need to be created and then this module can assign the correct access rights to that service account using IAM Roles.\n\n## Usage\n\n```hcl\nresource \"google_service_account\" \"test\" {\n  account_id = \"test-account\"\n}\n\nresource \"google_compute_address\" \"test\" {\n  name         = \"test-ip\"\n  address_type = \"EXTERNAL\"\n}\n\nmodule \"tls_cert\" {\n  source = \"../\"\n\n  project_id            = var.project_id\n  region                = var.project_region\n  service_account_email = google_service_account.test.email\n  tls_bucket            = \"test-tls-bucket\"\n  tls_cert_name         = \"devopsrob\"\n\n  ip_addresses = [\n    google_compute_address.test.address,\n    \"127.0.0.1\",\n  ]\n\n  tls_ca_subject = {\n    common_name         = \"HashiCorp Inc. Root\"\n    organization        = \"HashiCorp, Inc\"\n    organizational_unit = \"Department of Certificate Authority\"\n    street_address      = [\"123 Hashi Street\"]\n    locality            = \"The Internet\"\n    province            = \"London\"\n    country             = \"UK\"\n    postal_code         = \"SW1 2EG\"\n  }\n}\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevops-rob%2Fterraform-gcp-tls","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdevops-rob%2Fterraform-gcp-tls","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevops-rob%2Fterraform-gcp-tls/lists"}