Page MenuHomeDevCentral
Files F33050000

router.tf
No OneTemporary
Actions

router.tf
View Options

# -------------------------------------------------------------
# Terraform :: OpenBao :: Router
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Project: Nasqueron
# License: BSD-2-Clause
# Provider: Vault / OpenBao
# Target: completor.nasqueron.drake
# -------------------------------------------------------------
# -------------------------------------------------------------
# Policy
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
resource "vault_policy" "router" {
name = "router"
policy = file("${path.module}/policies/router.hcl")
}
# -------------------------------------------------------------
# AppRole
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
module "router_approle" {
source = "./modules/app_credentials"
role_name = "router"
policies = ["router"]
secret_id_bound_cidrs = [
"172.27.27.11/32", # router-002
"172.27.27.12/32", # router-003
]
# Save credentials to
kv_mount = "ops"
kv_path = "secrets/network/router/vault"
}

File Metadata

Mime Type
text/plain
Expires
Tue, Jun 16, 13:49 (1 d, 20 h)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
3808043
Default Alt Text
router.tf (1 KB)

Event Timeline

Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator