HomeTerraform Modulemeerkat

meerkat

borchero/meerkat/vault

Terraform Module HCL VAULT

Terraform Module for Meerkat Vault Configuration.

Install
module "meerkat" {
source = "borchero/meerkat/vault"
version = "0.3.0"
}
plain text: /constructs/tfmod-borchero-meerkat-vault/install.txt
⭐ Source on GitHub 📦 Registry page
README

Meerkat Vault Configuration Meerkat is a collection of components to deploy OpenVPN easily in Kubernetes. This repository contains the required configuration for Vault which manages all required secrets. Prerequisites Before running the configuration provided via this module, make sure that Kubernetes authentication for Vault is set up and a connection for the database being referenced by this module has already been created. Additionally, Meerkat requires shared secrets that have to be generated on the client and pushed to a Vault key-value store. Specifically, OpenVPN requires Diffie-Hellman parameters as well as a shared key to prevent DoS attacks. For this, you should run the following steps: ``bash Generate Keys openssl dhparam -out dh.pem 2048 openvpn --genkey --secret ta.key Create

Inputs (9)
NameTypeDescriptionDefault
pki_organizationstringThe name of the organization issuing certificates. required
pki_common_namestringThe common name to use for the CA. required
vault_addressstringThe endpoint where Vault is reachable for obtaing CRLs for the running Meerkat."http://localhost:8200"
vault_policy_prefixstringThe prefix of the name of the policies created for Meerkat."meerkat"
pki_countrystringThe 2-letter country code to use for the CA."DE"
pki_localitystringThe city of the organization issuing certificates."Munich"
pki_organization_unitstringThe organization unit responsible for the CA."IT"
vault_pki_pathstringThe path for the Meerkat PKI."pki/meerkat"
vault_kv_pathstringThe path for the KV V2 engine used to store the 'dh-params' and 'tls-auth' keys."kv/meerat"
Outputs (3)
policy_api — The name of the policy that should be assigned to Meerkat's API component.
policy_cron — The name of the policy that should be assigned to Meerkat's Cron component.
policy_vpn — The name of the policy that should be assigned to Meerkat's VPN component.
Resources (5)
vault_mountvault_pki_secret_backend_config_urlsvault_pki_secret_backend_rolevault_pki_secret_backend_root_certvault_policy
Topics & Tags
terraformsecurityopenvpn
Details
FrameworkTerraform Module
LanguageHCL
Version0.3.0
Cloud VAULT
★ Stars0
Forks2
Total downloads990
Inputs9
Outputs3
Resources5
LicenseMIT
Namespaceborchero
Updated
Similar packages
caf-enterprise-scale

Azure landing zones Terraform module

★ 952terraform
caf

Terraform supermodule for the Terraform platform engineering for Azure

★ 581terraform
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

★ 210terraform
label

Terraform Module to define a consistent naming convention by (namespace, stage,

★ 702terraform
Tools
⚖ Compare with another construct → 📋 View data schema