{"id":20340925,"url":"https://github.com/leancodepl/terraform-kratos-module","last_synced_at":"2026-03-19T15:23:18.484Z","repository":{"id":212514275,"uuid":"643948904","full_name":"leancodepl/terraform-kratos-module","owner":"leancodepl","description":null,"archived":false,"fork":false,"pushed_at":"2026-02-18T10:48:54.000Z","size":31,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2026-02-27T18:38:11.055Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/leancodepl.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2023-05-22T13:43:31.000Z","updated_at":"2026-02-17T14:06:19.000Z","dependencies_parsed_at":"2023-12-14T17:26:12.482Z","dependency_job_id":"d905e728-69e4-4ab6-983f-ee67521ae573","html_url":"https://github.com/leancodepl/terraform-kratos-module","commit_stats":null,"previous_names":["leancodepl/terraform-kratos-module"],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/leancodepl/terraform-kratos-module","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/leancodepl%2Fterraform-kratos-module","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/leancodepl%2Fterraform-kratos-module/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/leancodepl%2Fterraform-kratos-module/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/leancodepl%2Fterraform-kratos-module/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/leancodepl","download_url":"https://codeload.github.com/leancodepl/terraform-kratos-module/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/leancodepl%2Fterraform-kratos-module/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30263602,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-08T14:54:00.943Z","status":"ssl_error","status_checked_at":"2026-03-08T14:53:54.486Z","response_time":56,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-14T21:24:41.640Z","updated_at":"2026-03-08T15:36:16.561Z","avatar_url":"https://github.com/leancodepl.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# terraform-kratos-module\n\nA Terraform module for easy deployment of Ory Kratos.\n\n## Requirements\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"requirement_terraform\"\u003e\u003c/a\u003e [terraform](#requirement\\_terraform) | \u003e= 1.9 |\n| \u003ca name=\"requirement_kubernetes\"\u003e\u003c/a\u003e [kubernetes](#requirement\\_kubernetes) | \u003e= 2.20 |\n| \u003ca name=\"requirement_random\"\u003e\u003c/a\u003e [random](#requirement\\_random) | \u003e= 3.5 |\n\n## Providers\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"provider_kubernetes\"\u003e\u003c/a\u003e [kubernetes](#provider\\_kubernetes) | \u003e= 2.20 |\n| \u003ca name=\"provider_random\"\u003e\u003c/a\u003e [random](#provider\\_random) | \u003e= 3.5 |\n\n## Modules\n\nNo modules.\n\n## Resources\n\n| Name | Type |\n|------|------|\n| [kubernetes_config_map_v1.kratos_config_files](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/config_map_v1) | resource |\n| [kubernetes_deployment_v1.kratos](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/deployment_v1) | resource |\n| [kubernetes_deployment_v1.kratos_courier](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/deployment_v1) | resource |\n| [kubernetes_ingress_v1.kratos_ingress](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/ingress_v1) | resource |\n| [kubernetes_job_v1.kratos_migrations](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/job_v1) | resource |\n| [kubernetes_secret_v1.kratos_config_yaml](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/secret_v1) | resource |\n| [kubernetes_secret_v1.kratos_secret](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/secret_v1) | resource |\n| [kubernetes_service_account_v1.kratos](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/service_account_v1) | resource |\n| [kubernetes_service_v1.kratos_service](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/service_v1) | resource |\n| [random_password.kratos_cipher_secret](https://registry.terraform.io/providers/hashicorp/random/latest/docs/resources/password) | resource |\n| [random_password.kratos_cookie_secret](https://registry.terraform.io/providers/hashicorp/random/latest/docs/resources/password) | resource |\n| [kubernetes_namespace_v1.kratos_ns](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/data-sources/namespace_v1) | data source |\n\n## Inputs\n\n| Name | Description | Type | Default | Required |\n|------|-------------|------|---------|:--------:|\n| \u003ca name=\"input_config_files\"\u003e\u003c/a\u003e [config\\_files](#input\\_config\\_files) | Additional files to be mounted at /etc/kratos, e.g. identity schemas and courier templates | `map(string)` | `{}` | no |\n| \u003ca name=\"input_config_yaml\"\u003e\u003c/a\u003e [config\\_yaml](#input\\_config\\_yaml) | Content of kratos.yaml configuration file | `string` | n/a | yes |\n| \u003ca name=\"input_courier_mode\"\u003e\u003c/a\u003e [courier\\_mode](#input\\_courier\\_mode) | Message courier deployment mode, one of: \"disabled\", \"background\", \"standalone\" | `string` | n/a | yes |\n| \u003ca name=\"input_courier_resources\"\u003e\u003c/a\u003e [courier\\_resources](#input\\_courier\\_resources) | Resource requests and limits for courier Kratos pod | \u003cpre\u003eobject({\u003cbr/\u003e    requests = object({\u003cbr/\u003e      cpu    = string\u003cbr/\u003e      memory = string\u003cbr/\u003e    })\u003cbr/\u003e    limits = object({\u003cbr/\u003e      cpu    = string\u003cbr/\u003e      memory = string\u003cbr/\u003e    })\u003cbr/\u003e  })\u003c/pre\u003e | n/a | yes |\n| \u003ca name=\"input_courier_smtp_connection_uri\"\u003e\u003c/a\u003e [courier\\_smtp\\_connection\\_uri](#input\\_courier\\_smtp\\_connection\\_uri) | SMTP connection data and credentials in URI form for email delivery, e.g. smtps://apikey:SG.myapikey@smtp.sendgrid.net:465 | `string` | n/a | yes |\n| \u003ca name=\"input_dsn\"\u003e\u003c/a\u003e [dsn](#input\\_dsn) | Data source name, database connection data and credentials in URI form, e.g. postgresql://kratos:correct%20horse%20battery%20staple@postgresd:5432/kratosdb?sslmode=require\u0026max_conns=20\u0026max_idle_conns=4 | `string` | n/a | yes |\n| \u003ca name=\"input_env\"\u003e\u003c/a\u003e [env](#input\\_env) | A list of additional environment variables that will be passed as the `env` block in pods | \u003cpre\u003elist(object({\u003cbr/\u003e    name  = string\u003cbr/\u003e    value = optional(string)\u003cbr/\u003e    value_from = optional(object({\u003cbr/\u003e      config_map_key_ref = optional(object({\u003cbr/\u003e        optional = bool\u003cbr/\u003e        name     = string\u003cbr/\u003e        key      = string\u003cbr/\u003e      }))\u003cbr/\u003e      secret_key_ref = optional(object({\u003cbr/\u003e        optional = bool\u003cbr/\u003e        name     = string\u003cbr/\u003e        key      = string\u003cbr/\u003e      }))\u003cbr/\u003e      field_ref = optional(object({\u003cbr/\u003e        api_version = string\u003cbr/\u003e        field_path  = string\u003cbr/\u003e      }))\u003cbr/\u003e      resource_field_ref = optional(object({\u003cbr/\u003e        container_name = string\u003cbr/\u003e        divisor        = string\u003cbr/\u003e        resource       = string\u003cbr/\u003e      }))\u003cbr/\u003e    }))\u003cbr/\u003e  }))\u003c/pre\u003e | `[]` | no |\n| \u003ca name=\"input_image\"\u003e\u003c/a\u003e [image](#input\\_image) | Image repository and version to use for deployment | `string` | `\"docker.io/oryd/kratos:v1.0.0\"` | no |\n| \u003ca name=\"input_ingress_host\"\u003e\u003c/a\u003e [ingress\\_host](#input\\_ingress\\_host) | Create an ingress to expose public Kratos endpoint under this hostname if provided | `string` | n/a | yes |\n| \u003ca name=\"input_labels\"\u003e\u003c/a\u003e [labels](#input\\_labels) | Kubernetes labels to attach to created resources | `map(string)` | `{}` | no |\n| \u003ca name=\"input_namespace\"\u003e\u003c/a\u003e [namespace](#input\\_namespace) | Kubernetes namespace to deploy to | `string` | n/a | yes |\n| \u003ca name=\"input_project\"\u003e\u003c/a\u003e [project](#input\\_project) | Project name to used as label and prefix for created resources | `string` | n/a | yes |\n| \u003ca name=\"input_replicas\"\u003e\u003c/a\u003e [replicas](#input\\_replicas) | Number of main Kratos pod replicas, must be a positive integer | `number` | `1` | no |\n| \u003ca name=\"input_resources\"\u003e\u003c/a\u003e [resources](#input\\_resources) | Resource requests and limits for main Kratos pods | \u003cpre\u003eobject({\u003cbr/\u003e    requests = object({\u003cbr/\u003e      cpu    = string\u003cbr/\u003e      memory = string\u003cbr/\u003e    })\u003cbr/\u003e    limits = object({\u003cbr/\u003e      cpu    = string\u003cbr/\u003e      memory = string\u003cbr/\u003e    })\u003cbr/\u003e  })\u003c/pre\u003e | n/a | yes |\n| \u003ca name=\"input_secrets\"\u003e\u003c/a\u003e [secrets](#input\\_secrets) | External secrets to import and use instead of generating new ones, cookie must be at least 16 characters long and cipher must be exactly 32 characters long | \u003cpre\u003eobject({\u003cbr/\u003e    cookie = string\u003cbr/\u003e    cipher = string\u003cbr/\u003e  })\u003c/pre\u003e | `null` | no |\n\n## Outputs\n\n| Name | Description |\n|------|-------------|\n| \u003ca name=\"output_cipher_secret\"\u003e\u003c/a\u003e [cipher\\_secret](#output\\_cipher\\_secret) | Used (generated or imported) cipher secret |\n| \u003ca name=\"output_cookie_secret\"\u003e\u003c/a\u003e [cookie\\_secret](#output\\_cookie\\_secret) | Used (generated or imported) cookie secret |\n| \u003ca name=\"output_external_ingress_url\"\u003e\u003c/a\u003e [external\\_ingress\\_url](#output\\_external\\_ingress\\_url) | Public URL for connecting to deployed Kratos instance from outside the cluster, if ingress\\_host was provided |\n| \u003ca name=\"output_internal_service_url\"\u003e\u003c/a\u003e [internal\\_service\\_url](#output\\_internal\\_service\\_url) | Cluster-private URLs for connecting to deployed Kratos instance, both public and admin API endpoints |\n| \u003ca name=\"output_service_account_name\"\u003e\u003c/a\u003e [service\\_account\\_name](#output\\_service\\_account\\_name) | Name of created Kubernetes service account for the main Kratos server workload |\n| \u003ca name=\"output_service_name\"\u003e\u003c/a\u003e [service\\_name](#output\\_service\\_name) | Name of created Kubernetes service for use with other routing schemes |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fleancodepl%2Fterraform-kratos-module","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fleancodepl%2Fterraform-kratos-module","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fleancodepl%2Fterraform-kratos-module/lists"}