This module creates AWS SSM parameters. It has ability to create manual - without any tracking of updates and dynamic - with auto set values
locals {
// Task definition secrets for ECS would be generated via output
task_container_secrets = [
// Backend
{
"prefix" = "/${var.environment}/backend"
"parameters" = [
{
"name" = "Bank_Secret"
"value" = "1"
},
{
"name" = "Bank_Key"
"value" = "1"
},
{
"name" = "Other_Manual_Secret"
"value" = "1"
}
]
}
]
}
## task definition secrets
module "task_container_secrets" {
source = "git::https://github.com/dmytro-dorofeiev/modules/terraform-aws-ssm-module.git"
parameters = local.task_container_secrets
kms_key_id = data.aws_kms_alias.default.arn
ignore_changes = true
overwrite = false
tags = local.common_tags
}
Name | Version |
---|---|
terraform | >= 0.13 |
aws | ~> 3.0 |
Name | Version |
---|---|
aws | ~> 3.0 |
No modules.
Name | Type |
---|---|
aws_ssm_parameter.dynamic_set_parameters | resource |
aws_ssm_parameter.parameter | resource |
Name | Description | Type | Default | Required |
---|---|---|---|---|
ignore_changes | Set lifecycle behaviour | bool |
false |
no |
kms_key_id | KMS key id | string |
n/a | yes |
overwrite | Overwrite an existing parameter. | bool |
true |
no |
parameters | n/a | list(object({ |
[] |
no |
tags | tags | map(any) |
n/a | yes |
Name | Description |
---|---|
dynamic_keys | SSM keys name |
dynamic_secrets_json | ECS task definition secrets from dynamic ssm |
dynamic_values | SSM keys values |
static_keys | SSM keys name |
static_secrets_json | ECS task definition secrets from manual ssm |
static_values | SSM keys values |