Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/crazy-canux/terraform-gcp-bank-vaults
https://github.com/crazy-canux/terraform-gcp-bank-vaults
bank-vaults gcp gke kubernetes terraform vaults
Last synced: 2 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/crazy-canux/terraform-gcp-bank-vaults
- Owner: crazy-canux
- Created: 2023-08-15T12:48:39.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2023-10-10T05:42:27.000Z (about 1 year ago)
- Last Synced: 2024-04-16T04:22:52.245Z (7 months ago)
- Topics: bank-vaults, gcp, gke, kubernetes, terraform, vaults
- Language: HCL
- Homepage:
- Size: 11.7 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# terraform bank vaults
provision vault-secrets-webhook to GKE.
## Synopsis
provider
provider "google" {
project = local.project
region = local.region
}
provider "helm" {
kubernetes {
host = "https://${data.google_container_cluster.this.endpoint}"
cluster_ca_certificate = base64decode(data.google_container_cluster.this.master_auth[0].cluster_ca_certificate)
token = data.google_client_config.this.access_token
}
}
provider "kubernetes" {
host = "https://${data.google_container_cluster.this.endpoint}"
cluster_ca_certificate = base64decode(data.google_container_cluster.this.master_auth[0].cluster_ca_certificate)
token = data.google_client_config.this.access_token
}
provider "vault" {
address = local.vault_url
namespace = local.vault_namespace
skip_child_token = true
}
module
module "secrets_webhook" {
source = "../../terraform-gcp-bank-vaults"
vault_url = local.vault_url
vault_namespace = local.vault_namespace
cluster_name = local.cluster_name
vault_policies = []
extra_sa_mappings = []
}