This module creates AWS SSM parameters. It has ability to create manual - without any tracking of updates and dynamic - with auto set values
locals {
// Task definition secrets for ECS would be generated via output
task_container_secrets = [
// Backend
{
"prefix" = "/${var.environment}/backend"
"parameters" = [
{
"name" = "Bank_Secret"
"value" = "1"
},
{
"name" = "Bank_Key"
"value" = "1"
},
{
"name" = "Other_Manual_Secret"
"value" = "1"
}
]
}
]
}
## task definition secrets
module "task_container_secrets" {
source = "git::https://github.com/dmytro-dorofeiev/modules/terraform-aws-ssm-module.git"
parameters = local.task_container_secrets
kms_key_id = data.aws_kms_alias.default.arn
ignore_changes = true
overwrite = false
tags = local.common_tags
}| Name | Version |
|---|---|
| terraform | >= 0.13 |
| aws | ~> 3.0 |
| Name | Version |
|---|---|
| aws | ~> 3.0 |
No modules.
| Name | Type |
|---|---|
| aws_ssm_parameter.dynamic_set_parameters | resource |
| aws_ssm_parameter.parameter | resource |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| ignore_changes | Set lifecycle behaviour | bool |
false |
no |
| kms_key_id | KMS key id | string |
n/a | yes |
| overwrite | Overwrite an existing parameter. | bool |
true |
no |
| parameters | n/a | list(object({ |
[] |
no |
| tags | tags | map(any) |
n/a | yes |
| Name | Description |
|---|---|
| dynamic_keys | SSM keys name |
| dynamic_secrets_json | ECS task definition secrets from dynamic ssm |
| dynamic_values | SSM keys values |
| static_keys | SSM keys name |
| static_secrets_json | ECS task definition secrets from manual ssm |
| static_values | SSM keys values |