https://github.com/Azure-Terraform/terraform-azurerm-storage-account
https://github.com/Azure-Terraform/terraform-azurerm-storage-account
Last synced: 5 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/Azure-Terraform/terraform-azurerm-storage-account
- Owner: Azure-Terraform
- Created: 2021-02-03T22:52:13.000Z (about 4 years ago)
- Default Branch: main
- Last Pushed: 2024-07-02T11:14:49.000Z (10 months ago)
- Last Synced: 2024-08-03T22:19:30.008Z (8 months ago)
- Language: HCL
- Size: 58.6 KB
- Stars: 20
- Watchers: 3
- Forks: 61
- Open Issues: 17
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- jimsghstars - Azure-Terraform/terraform-azurerm-storage-account - (HCL)
README
# Azure - Storage Account Module
This module will create a storage account.
## Requirements
| Name | Version |
|------|---------|
| [terraform](#requirement\_terraform) | ~> 1.3 |
| [azurerm](#requirement\_azurerm) | ~> 3.0 |
| [random](#requirement\_random) | >= 3.1 |
## Providers
| Name | Version |
|------|---------|
| [azurerm](#provider\_azurerm) | ~> 3.0 |
| [random](#provider\_random) | >= 3.1 |
## Modules
No modules.
## Resources
| Name | Type |
|------|------|
| [azurerm_storage_account.sa](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/storage_account) | resource |
| [azurerm_storage_encryption_scope.scope](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/storage_encryption_scope) | resource |
| [random_string.random](https://registry.terraform.io/providers/hashicorp/random/latest/docs/resources/string) | resource |
## Inputs
| Name | Description | Type | Default | Required |
|------|-------------|------|---------|:--------:|
| [access\_list](#input\_access\_list) | Map of CIDRs Storage Account access. | `map(string)` | `{}` | no |
| [access\_tier](#input\_access\_tier) | Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts | `string` | `"Hot"` | no |
| [account\_kind](#input\_account\_kind) | Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2 | `string` | `"StorageV2"` | no |
| [account\_tier](#input\_account\_tier) | Defines the Tier to use for this storage account (Standard or Premium). | `string` | `null` | no |
| [allow\_nested\_items\_to\_be\_public](#input\_allow\_nested\_items\_to\_be\_public) | Allow or disallow public access to all blobs or containers in the storage account. | `bool` | `false` | no |
| [blob\_cors](#input\_blob\_cors) | blob service cors rules: https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/storage_account#cors_rule |
map(object({
allowed_headers = list(string)
allowed_methods = list(string)
allowed_origins = list(string)
exposed_headers = list(string)
max_age_in_seconds = number
})) | `null` | no |
| [blob\_delete\_retention\_days](#input\_blob\_delete\_retention\_days) | Retention days for deleted blob. Valid value is between 1 and 365 (set to 0 to disable). | `number` | `7` | no |
| [blob\_last\_access\_time\_enabled](#input\_blob\_last\_access\_time\_enabled) | Controls whether blob last access time recording is enabled for container usage. | `bool` | `false` | no |
| [blob\_versioning\_enabled](#input\_blob\_versioning\_enabled) | Controls whether blob object versioning is enabled. | `bool` | `false` | no |
| [container\_delete\_retention\_days](#input\_container\_delete\_retention\_days) | Retention days for deleted container. Valid value is between 1 and 365 (set to 0 to disable). | `number` | `7` | no |
| [cross\_tenant\_replication\_enabled](#input\_cross\_tenant\_replication\_enabled) | Enable cross tenant replication when needed and valid reason. Possible values are `true` or `false` | `bool` | `false` | no |
| [custom\_404\_path](#input\_custom\_404\_path) | path from your repo root to your custom 404 page | `string` | `null` | no |
| [default\_network\_rule](#input\_default\_network\_rule) | Specifies the default action of allow or deny when no other network rules match | `string` | `"Deny"` | no |
| [default\_to\_oauth\_authentication](#input\_default\_to\_oauth\_authentication) | Set default authentication to storage account content | `bool` | `false` | no |
| [enable\_hns](#input\_enable\_hns) | Enable Hierarchical Namespace (can be used with Azure Data Lake Storage Gen 2). | `bool` | `false` | no |
| [enable\_https\_traffic\_only](#input\_enable\_https\_traffic\_only) | Forces HTTPS if enabled. | `bool` | `true` | no |
| [enable\_large\_file\_share](#input\_enable\_large\_file\_share) | Enable Large File Share. | `bool` | `false` | no |
| [enable\_sftp](#input\_enable\_sftp) | Enable SFTP for storage account (enable\_hns must be set to true for this to work). | `bool` | `false` | no |
| [enable\_static\_website](#input\_enable\_static\_website) | Controls if static website to be enabled on the storage account. Possible values are `true` or `false` | `bool` | `false` | no |
| [encryption\_scopes](#input\_encryption\_scopes) | Encryption scopes, keys are scope names. more info https://docs.microsoft.com/en-us/azure/storage/common/infrastructure-encryption-enable?tabs=portal | map(object({
enable_infrastructure_encryption = optional(bool)
source = optional(string)
})) | `{}` | no |
| [index\_path](#input\_index\_path) | path from your repo root to index.html | `string` | `null` | no |
| [infrastructure\_encryption\_enabled](#input\_infrastructure\_encryption\_enabled) | Is infrastructure encryption enabled? Changing this forces a new resource to be created. | `bool` | `true` | no |
| [location](#input\_location) | Specifies the supported Azure location to MySQL server resource | `string` | n/a | yes |
| [min\_tls\_version](#input\_min\_tls\_version) | The minimum supported TLS version for the storage account. | `string` | `"TLS1_2"` | no |
| [name](#input\_name) | Storage account name | `string` | `null` | no |
| [nfsv3\_enabled](#input\_nfsv3\_enabled) | Is NFSv3 protocol enabled? Changing this forces a new resource to be created | `bool` | `false` | no |
| [replication\_type](#input\_replication\_type) | Storage account replication type - i.e. LRS, GRS, RAGRS, ZRS, GZRS, RAGZRS. | `string` | n/a | yes |
| [resource\_group\_name](#input\_resource\_group\_name) | name of the resource group to create the resource | `string` | n/a | yes |
| [service\_endpoints](#input\_service\_endpoints) | Creates a virtual network rule in the subnet\_id (values are virtual network subnet ids). | `map(string)` | `{}` | no |
| [shared\_access\_key\_enabled](#input\_shared\_access\_key\_enabled) | Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key | `bool` | `false` | no |
| [tags](#input\_tags) | tags to be applied to resources | `map(string)` | n/a | yes |
| [traffic\_bypass](#input\_traffic\_bypass) | Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None. | `list(string)` | [
"None"
]
| no |
## Outputs
| Name | Description |
|------|-------------|
| [encryption\_scope\_ids](#output\_encryption\_scope\_ids) | encryption scope info. |
| [id](#output\_id) | The ID of the Storage Account. |
| [name](#output\_name) | The name of the Storage Account. |
| [primary\_access\_key](#output\_primary\_access\_key) | The primary access key for the storage account. |
| [primary\_blob\_connection\_string](#output\_primary\_blob\_connection\_string) | The connection string associated with the primary blob location. |
| [primary\_blob\_endpoint](#output\_primary\_blob\_endpoint) | The endpoint URL for blob storage in the primary location. |
| [primary\_blob\_host](#output\_primary\_blob\_host) | The endpoint host for blob storage in the primary location. |
| [primary\_connection\_string](#output\_primary\_connection\_string) | The connection string associated with the primary location. |
| [primary\_dfs\_endpoint](#output\_primary\_dfs\_endpoint) | The endpoint URL for DFS storage in the primary location. |
| [primary\_file\_endpoint](#output\_primary\_file\_endpoint) | The endpoint URL for file storage in the primary location. |
| [primary\_queue\_endpoint](#output\_primary\_queue\_endpoint) | The endpoint URL for queue storage in the primary location. |
| [primary\_table\_endpoint](#output\_primary\_table\_endpoint) | The endpoint URL for table storage in the primary location. |
| [primary\_web\_endpoint](#output\_primary\_web\_endpoint) | The endpoint URL for web storage in the primary location. |
| [primary\_web\_host](#output\_primary\_web\_host) | Hostname with port for web storage in the primary location. |
| [principal\_id](#output\_principal\_id) | The Principal ID for the Service Principal associated with the Identity of this Storage Account. |
| [sa](#output\_sa) | The Storage Account object. |
| [secondary\_access\_key](#output\_secondary\_access\_key) | The secondary access key for the storage account. |
| [secondary\_blob\_connection\_string](#output\_secondary\_blob\_connection\_string) | The connection string associated with the secondary blob location. |
| [secondary\_blob\_endpoint](#output\_secondary\_blob\_endpoint) | The endpoint URL for blob storage in the secondary location. |
| [secondary\_blob\_host](#output\_secondary\_blob\_host) | The endpoint host for blob storage in the secondary location. |
| [secondary\_connection\_string](#output\_secondary\_connection\_string) | The connection string associated with the secondary location. |
| [secondary\_dfs\_endpoint](#output\_secondary\_dfs\_endpoint) | The endpoint URL for DFS storage in the secondary location. |
| [secondary\_file\_endpoint](#output\_secondary\_file\_endpoint) | The endpoint URL for file storage in the secondary location. |
| [secondary\_queue\_endpoint](#output\_secondary\_queue\_endpoint) | The endpoint URL for queue storage in the secondary location. |
| [secondary\_table\_endpoint](#output\_secondary\_table\_endpoint) | The endpoint URL for table storage in the secondary location. |
| [secondary\_web\_endpoint](#output\_secondary\_web\_endpoint) | The endpoint URL for web storage in the secondary location. |
| [secondary\_web\_host](#output\_secondary\_web\_host) | Hostname with port for web storage in the secondary location. |
| [tenant\_id](#output\_tenant\_id) | The Tenant ID for the Service Principal associated with the Identity of this Storage Account. |