byok-template
clumio-code/byok-template/clumio
Terraform module containing resources required for Clumio BYOK.
Clumio BYOK Terraform Module Terraform module to install the Clumio required AWS BYOK resources in the customer AWS account. Usage: This module is to be used along with the resource clumio_wallet as some of the inputs for the module are obtained from the output of clumio_wallet resource. Below is an example of using the module: ``hcl provider clumio{ clumio_api_token = var.clumio_api_token clumio_api_base_url = var.clumio_api_base_url } provider aws {} data aws_caller_identity current { } data aws_region current { } resource "clumio_wallet" "test_wallet" { account_native_id = data.aws_caller_identity.current.account_id aws_region = data.aws_region.current.name } ################################################################################ Clumio BYOK Module #############################
| Name | Type | Description | Default |
|---|---|---|---|
| clumio_account_id | string | Clumio account ID. | |
| token | string | The AWS integration ID token. | |
| account_native_id | string | Wallet account native ID. | |
| aws_region | string | The Wallet AWS region to deploy resources. | "" |
| external_id | string | The external ID to use when assuming the role. | "" |
| role_name | string | The name to use for the role that Clumio will use to manage the key. | "ClumioKMSRole" |
| existing_cmk_id | string | The ID of an existing multi-region CMK to use (optional). | "" |
| deletion_window_in_days | number | Primary and replica key deletion window in days. | 30 |
| key_tags | map(string) | Tags for mutli-region CMK to be created. Not used if existing_cmk_id is provided | {} |
| key_alias_name | string | Alias name for multi-region CMK to be used (optional). Default value is clumio-b | "clumio-byok" |