https://github.com/lubeso/terraform-module-gcp-oidc
Create an OIDC provider in Google Cloud.
https://github.com/lubeso/terraform-module-gcp-oidc
google-cloud-platform oidc oidc-provider terraform terraform-module
Last synced: 4 months ago
JSON representation
Create an OIDC provider in Google Cloud.
- Host: GitHub
- URL: https://github.com/lubeso/terraform-module-gcp-oidc
- Owner: lubeso
- Created: 2024-06-09T06:59:07.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2024-06-09T07:34:51.000Z (about 2 years ago)
- Last Synced: 2025-02-13T15:26:15.237Z (over 1 year ago)
- Topics: google-cloud-platform, oidc, oidc-provider, terraform, terraform-module
- Language: HCL
- Homepage:
- Size: 31.3 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
## Requirements
| Name | Version |
|------|---------|
| [google](#requirement\_google) | ~> 5.32.0 |
| [random](#requirement\_random) | ~> 3.6.2 |
## Providers
| Name | Version |
|------|---------|
| [google](#provider\_google) | 5.32.0 |
| [random](#provider\_random) | 3.6.2 |
## Modules
No modules.
## Resources
| Name | Type |
|------|------|
| [google_iam_workload_identity_pool.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/iam_workload_identity_pool) | resource |
| [google_iam_workload_identity_pool_provider.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/iam_workload_identity_pool_provider) | resource |
| [google_project_iam_member.roles](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/project_iam_member) | resource |
| [google_service_account.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_account) | resource |
| [google_service_account_iam_member.workload_identity_user](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_account_iam_member) | resource |
| [random_id.default](https://registry.terraform.io/providers/hashicorp/random/latest/docs/resources/id) | resource |
| [google_service_account_iam_policy.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/data-sources/service_account_iam_policy) | data source |
## Inputs
| Name | Description | Type | Default | Required |
|------|-------------|------|---------|:--------:|
| [project](#input\_project) | Unique ID for the Google Cloud Project | `string` | n/a | yes |
| [random\_id](#input\_random\_id) | Configuration for generating random IDs | `object({ byte_length = number })` |
{
"byte_length": 2
} | no |
| [service\_account](#input\_service\_account) | Configuration for the workload service account resource | object({
account_id = string
display_name = optional(string)
iam = object({
principal = object({
subject = object({
attribute_value = string
})
})
roles = optional(list(string), [])
})
}) | n/a | yes |
| [workload\_identity\_pool](#input\_workload\_identity\_pool) | Configuration for the Workload Identity Pool resource | object({
id = string
display_name = optional(string)
description = optional(string)
disabled = optional(bool, false)
project = optional(string)
}) | n/a | yes |
| [workload\_identity\_pool\_provider](#input\_workload\_identity\_pool\_provider) | Configuration for the Workload Identity Pool Provider resource | object({
id = optional(string, "oidc")
display_name = optional(string, "OpenID Connect")
description = optional(string)
disabled = optional(bool, false)
attribute_mapping = optional(map(string), {})
attribute_condition = optional(string)
oidc = object({
issuer_uri = string
allowed_audiences = optional(list(string))
jwks_json = optional(string)
})
}) | n/a | yes |
## Outputs
No outputs.