https://github.com/terraform-module/terraform-aws-kms
Terraform module which creates a KMS Customer Master Key (CMK) and its alias.
https://github.com/terraform-module/terraform-aws-kms
aws kms module terraform
Last synced: 24 days ago
JSON representation
Terraform module which creates a KMS Customer Master Key (CMK) and its alias.
- Host: GitHub
- URL: https://github.com/terraform-module/terraform-aws-kms
- Owner: terraform-module
- License: mit
- Created: 2019-11-02T15:46:33.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2025-06-11T04:32:26.000Z (about 1 year ago)
- Last Synced: 2026-06-06T14:07:32.196Z (25 days ago)
- Topics: aws, kms, module, terraform
- Language: HCL
- Size: 91.8 KB
- Stars: 7
- Watchers: 0
- Forks: 11
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Terraform AWS KMS
[Terraform module](https://www.terraform.io/docs/providers/aws/r/kms_key.html) to create fully feature KMS
---



[](https://github.com/terraform-module/terraform-aws-kms)




[](https://github.com/terraform-module/terraform-aws-kms)
[](https://github.com/terraform-module/terraform-aws-kms)




[](https://GitHub.com/terraform-module/terraform-aws-kms/graphs/commit-activity)
[](https://github.com/terraform-module/terraform-aws-kms)
---
## Usage example
Here's the gist of using it directly from github.
```hcl
module kms_chamber {
source = "terraform-module/kms/aws"
version = "2.3.0"
alias_name = "parameter_store_key"
description = "Key to encrypt and decrypt secrets"
tags = tomap({"used_by" = "chamber", "created_by" = "terraform"})
}
```
## Assumptions
## Available features
## Module Variables
## Inputs
| Name | Description | Type | Default | Required |
|------|-------------|:----:|:-----:|:-----:|
| alias\_name | The name of the key alias | string | n/a | yes |
| deletion\_window\_in\_days | The duration in days after which the key is deleted after destruction of the resource | string | `"30"` | no |
| description | The description of this KMS key | string | n/a | yes |
| enable\_key\_rotation | \(Optional\) Specifies whether key rotation is enabled. Defaults to false. | bool | `"true"` | no |
| iam\_policy | The policy of the key usage | string | `"null"` | no |
| is\_enabled | \(Optional\) Specifies whether the key is enabled. Defaults to true. | bool | `"true"` | no |
| tags | \(Optional\) A mapping of tags to assign to the object. | map | `{}` | no |
## Outputs
| Name | Description |
|------|-------------|
| key\_alias\_arn | The Amazon Resource Name \(ARN\) of the key alias |
| key\_alias\_name | The display name of the alias. |
| key\_arn | The Amazon Resource Name \(ARN\) of the key. |
| key\_id | The globally unique identifier for the key. |
## Commands
```
$ make help
hooks Commit hooks setup
validate Validate with pre-commit hooks
changelog Update changelog
release Create release version
```
## License
Copyright 2019 ivankatliarhcuk
MIT Licensed. See [LICENSE](./LICENSE) for full details.
## How to Contribute
Submit a pull request
# Authors
Currently maintained by [Ivan Katliarchuk](https://github.com/ivankatliarchuk) and these [awesome contributors](https://github.com/terraform-module/terraform-aws-kms/graphs/contributors).
## Terraform Registry
- [Module](https://registry.terraform.io/modules/terraform-module/kms/aws)