dynamodb-kms-key
dod-iac/dynamodb-kms-key/aws
KMS Key for use with DynamoDB.
Usage Creates a KMS Key for use with DynamoDB. ``hcl module "dynamodb_kms_key" { source = "dod-iac/dynamodb-kms-key/aws" name = format("alias/app-%s-dynamodb-%s", var.application, var.environment) description = format("A KMS key used to encrypt data at rest in DynamoDB for %s:%s.", var.application, var.environment) principals_encrypt = [var.submit_lambda_execution_role_arn] principals_decrypt = [var.export_lambda_execution_role_arn, aws_iam_role.user.arn] tags = { Application = var.application Environment = var.environment Automation = "Terraform" } } ` Terraform Version Terraform 0.12. Pin module version to ~> 1.0.0 . Submit pull-requests to master branch. Terraform 0.11 is not supported. License This project constitutes a work of the United States Government and is not subject to domesti
| Name | Type | Description | Default |
|---|---|---|---|
| principals_decrypt | list(string) | AWS Principals that can decrypt using this KMS key. | |
| principals_encrypt | list(string) | AWS Principals that can encrypt using this KMS key. | |
| description | string | "A KMS key used to encrypt data at rest | |
| key_deletion_window_in_days | string | Duration in days after which the key is deleted after destruction of the resourc | 30 |
| name | string | The display name of the alias. The name must start with the word "alias" followe | "alias/dynamodb" |
| tags | map(string) | Tags applied to the KMS key. | {} |
aws_kms_alias_arn — The Amazon Resource Name (ARN) of the key alias.aws_kms_alias_name — The display name of the alias.aws_kms_key_arn — The Amazon Resource Name (ARN) of the key.Azure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,