{"id":25115733,"url":"https://github.com/devops-rob/terraform-vault-transit-secrets-engine","last_synced_at":"2026-01-15T22:37:33.373Z","repository":{"id":110462934,"uuid":"332778980","full_name":"devops-rob/terraform-vault-transit-secrets-engine","owner":"devops-rob","description":"This module enables and configures the transit secrets engine in Vault.","archived":false,"fork":false,"pushed_at":"2021-01-25T14:48:02.000Z","size":8,"stargazers_count":0,"open_issues_count":0,"forks_count":3,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-02-08T02:35:29.273Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/devops-rob.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-01-25T14:46:06.000Z","updated_at":"2021-01-25T14:47:11.000Z","dependencies_parsed_at":null,"dependency_job_id":"f4997841-8132-40f6-996e-883cf4f624d9","html_url":"https://github.com/devops-rob/terraform-vault-transit-secrets-engine","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-vault-transit-secrets-engine","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-vault-transit-secrets-engine/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-vault-transit-secrets-engine/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devops-rob%2Fterraform-vault-transit-secrets-engine/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/devops-rob","download_url":"https://codeload.github.com/devops-rob/terraform-vault-transit-secrets-engine/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246811183,"owners_count":20837745,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-02-08T02:33:51.148Z","updated_at":"2026-01-15T22:37:33.346Z","avatar_url":"https://github.com/devops-rob.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Transit Secrets Engine\n\n## Overview\n\nThis module enables and configures the transit secrets engine in Vault.\n\n## Example use case\n\nModern applications often have to handle sensitive data.  This could be anything from credit card number to National Insurance numbers. As application developers, there is a duty of care to protect this data when at rest and whilst in transit.\n\nOne way to protect this data, is to encrypt it before it is sent to its storage location. Cryptography can be very complicated to implement in applications.  Mistakes in the implementation can be very costly for a business.\n\nApplication developers can now leverage Vault to delegate encryption away from their apps and instead, rely on Vault to perform the cryptography function.  Vault will manage the keys securely and rich access controls can be implemented by leveraging Vault policies.\n\n## Usage\n\n```hcl\nprovider \"vault\" {\n  address = \"http://localhost:8200\"\n  token   = var.vault_token\n}\n\nvariable \"vault_token\" {}\n\nmodule \"transit_defaults\" {\n  source          = \"../../\"\n\n  transit_keys = [\n    {\n      name                   = \"dev\"\n      allow_plaintext_backup = false\n      convergent_encryption  = false\n      exportable             = false\n      deletion_allowed       = true\n      derived                = false\n      type                   = \"rsa-2048\"\n      min_decryption_version = 1\n      min_encryption_version = 1\n    },\n    {\n      name                   = \"staging\"\n      allow_plaintext_backup = false\n      convergent_encryption  = false\n      exportable             = false\n      deletion_allowed       = true\n      derived                = false\n      type                   = \"rsa-2048\"\n      min_decryption_version = 1\n      min_encryption_version = 1\n    }\n  ]\n}\n```\n\n## License\n\nLicensed under the Apache License, Version 2.0 (the \"License\").\n\nYou may obtain a copy of the License at [apache.org/licenses/LICENSE-2.0](http://www.apache.org/licenses/LICENSE-2.0).\n\nUnless required by applicable law or agreed to in writing, software distributed under the License is distributed on an _\"AS IS\"_ basis, without WARRANTIES or conditions of any kind, either express or implied.\n\nSee the License for the specific language governing permissions and limitations under the License.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevops-rob%2Fterraform-vault-transit-secrets-engine","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdevops-rob%2Fterraform-vault-transit-secrets-engine","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevops-rob%2Fterraform-vault-transit-secrets-engine/lists"}