Requirements

No requirements.

Providers

Name	Version
aws	5.14.0
tls	4.0.4

Modules

Name	Source	Version
ebs_kms_key	terraform-aws-modules/kms/aws	2.0.0

Resources

Name	Type
aws_eip.bastion_host_eip	resource
aws_iam_instance_profile.bastion_ec2_instance_profile	resource
aws_iam_policy.bastion_parameter_store_kms	resource
aws_iam_policy.parameter_store_read_keys	resource
aws_iam_role.ec2_role_bastion	resource
aws_instance.bastion_host_ec2	resource
aws_key_pair.bastion	resource
aws_kms_key.parameter_store_bastion	resource
aws_security_group.allow_bastion_ssh_sg	resource
aws_ssm_parameter.host_ssh_ed25519_private_bastion	resource
aws_ssm_parameter.host_ssh_ed25519_public_bastion	resource
aws_ssm_parameter.host_ssh_edsa_private_bastion	resource
aws_ssm_parameter.host_ssh_edsa_public_bastion	resource
aws_ssm_parameter.host_ssh_rsa_private_bastion	resource
aws_ssm_parameter.host_ssh_rsa_public_bastion	resource
tls_private_key.bastion	resource
aws_ami.amazon2	data source
aws_caller_identity.current	data source
aws_iam_policy_document.ec2_role_assume_role_bastion_policy	data source
aws_iam_session_context.current	data source
aws_region.current	data source

Inputs

Name	Description	Type	Default	Required
bastion_ip_allowlist_ipv4	List of IPv4 CIDR blocks which can access the Bastion proxy	list(string)	[]	no
bastion_ip_allowlist_ipv6	List of IPv6 CIDR blocks which can access the Bastion proxy	list(string)	[]	no
name	Stack name to use in resource creation	string	n/a	yes
ssh_public_keys	List of public keys to add during build-time	list(string)	n/a	yes
subnet_id	Subnet in which to dpeloy the ec2 instance	string	n/a	yes
tags	A map of tags to add to all resources	map(string)	{}	no
vpc_id	VPC ID	string	n/a	yes

Outputs

Name	Description
bastion_private_key	n/a
bastion_public_key	n/a
incoming_security_group_id	Security group ID for bastion sg
instance_eip	n/a