Skip to content
/ terraform-google-service-account-vault Public

Terraform module to create Google Service Accounts with IAM roles and keys/tokens

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

gendall/terraform-google-service-account-vault

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Google Service Account Vault

A Terraform module that will create a Google Cloud Platform Service Account with the specified IAM roles applied. The module will also:

  • export a service account key and store it at the specified Vault path
  • create a Vault GCP Roleset that can be used to fetch a service account token at the specified Vault path

Usage

provider "google" {
  version = "~> 2.12"
  project = var.project
}

provider "vault" {}

module "storage" {
  source  = "gendall/service-account-vault/google"
  key = "secrets/data/my-project/google"
  token = "gcp/token/my-project"
  roles   = [
    "roles/object.admin"
  ]
}

Deployment

This role will be automatically built and deployed to Terraform Registry when a Semver tag is pushed to the repo.

About

Terraform module to create Google Service Accounts with IAM roles and keys/tokens

Topics

terraform

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

1 fork
Report repository

Releases 1

0.1.0 Latest
Dec 23, 2019

Packages

No packages published

Languages