ssm-tls-ssh-key-pair

cloudposse/ssm-tls-ssh-key-pair/aws

Terraform Module HCL AWS

Terraform module that provisions an SSH TLS Key pair and writes it to SSM Parameter Store

Install

module "ssm-tls-ssh-key-pair" {

source = "cloudposse/ssm-tls-ssh-key-pair/aws"

version = "0.10.2"

}

⭐ Source on GitHub 📦 Registry page

README

terraform-aws-ssm-tls-ssh-key-pair ![Latest Release](https://github.com/cloudposse/terraform-aws-ssm-tls-ssh-key-pair/releases/latest) ![Slack Community](https://slack.cloudposse.com) [![README Header][readme_header_img]][readme_header_link] [![Cloud Posse][logo]](https://cpco.io/homepage) Terraform module that provisions an SSH TLS key pair and writes it to SSM Parameter Store. This is useful for bot accounts (e.g. for GitHub). Easily rotate SSH secrets by simply tainting the module resource and reapplying. --- This project is part of our comprehensive "SweetOps" approach towards DevOps. [ ][share_email] [ ][share_googleplus] [ ][share_facebook] [ ][share_reddit] [ ][share_linkedin] [ ][share_twitter] ![Terraform Open Source Modules][terraform_modules] It's 100% Open Source and licensed u

Inputs (27)

Name	Type	Description	Default
label_key_case	string	Controls the letter case of the `tags` keys (label names) for tags generated by	required
delimiter	string	Delimiter to be used between ID elements. Defaults to `-` (hyphen). Set to `""`	required
label_order	list(string)	The order in which the labels (ID elements) appear in the `id`. Defaults to ["na	required
tenant	string	ID element _(Rarely used, not included by default)_. A customer identifier, indi	required
name	string	ID element. Usually the component or solution name, e.g. 'app' or 'jenkins'. Thi	required
namespace	string	ID element. Usually an abbreviation of your organization name, e.g. 'eg' or 'cp'	required
label_value_case	string	Controls the letter case of ID elements (labels) as included in `id`, set as tag	required
environment	string	ID element. Usually used for region e.g. 'uw2', 'us-west-2', OR role 'prod', 'st	required
stage	string	ID element. Usually used to indicate role, e.g. 'prod', 'staging', 'source', 'bu	required
regex_replace_chars	string	Terraform regular expression (regex) string. Characters matching the regex will	required
id_length_limit	number	Limit `id` to this many characters (minimum 6). Set to `0` for unlimited length.	required
enabled	bool	Set to false to prevent the module from creating any resources	required
ssh_public_key_name	string	SSM Parameter name of the SSH public key	`""`
ssm_path_prefix	string	The SSM parameter path prefix (e.g. /$ssm_path_prefix/$key_name)	`"ssh_keys"`
attributes	list(string)	ID element. Additional attributes (e.g. `workers` or `cluster`) to add to `id`,	`[]`
tags	map(string)	Additional tags (e.g. `{'BusinessUnit': 'XYZ'}`). Neither the tag keys nor the t	`{}`
rsa_bits	number	When ssh_key_algorithm is 'RSA', the size of the generated RSA key in bits	`4096`
ecdsa_curve	string	When ssh_key_algorithm is 'ECDSA', the name of the elliptic curve to use. May be	`"P256"`
labels_as_tags	set(string)	Set of labels (ID elements) to include as tags in the `tags` output. Default is	`[ "default" ]`
additional_tag_map	map(string)	Additional key-value pairs to add to each map in `tags_as_list_of_maps`. Not add	`{}`
overwrite_ssm_parameter	bool	Whether to overwrite an existing SSM parameter	`true`
context	any	Single object for setting entire context at once. See description of individual	`{ "additional_tag_map": {}, "attribu`
descriptor_formats	any	Describe additional descriptors to be output in the `descriptors` output map. Ma	`{}`
kms_key_id	string	KMS Key ID used for encryption	`""`
ssh_private_key_name	string	SSM Parameter name of the SSH private key	`""`
ssh_key_algorithm	string	SSH key algorithm to use. Currently-supported values are 'RSA' and 'ECDSA'	`"RSA"`
ssm_path_format	string	SSM path format	`"/%s/%s"`