std-path
kiwicom/std-path/vault
Terraform module for standardized vault paths - shared & third party
terraform-vault-std-path Terraform module for standardized paths - shared & third party - creates kw/[TYPE]/[PATH][-maintainer] policies - maintainer_groups is mandatory Shared - I cannot figure out a good example of a shared secret, but we have the option - roles parameter usually does not make sense ``hcl module "shared_automation" { source = "kiwicom/std-path/vault" version = "1.0.0" path = "automation/i-dont-know" type = "shared" maintainer_groups = [ "engineering.automation-seniors" ] } ` - creates kw/shared/automation/i-dont-know[-maintainer] policies which allows access to the same path - and assigns maintainer to the maintainer_groups 3rd party - any 3rd party company should have a contact person (or group) in kiwi. This person/group is responsible for communication and also for se
| Name | Type | Description | Default |
|---|---|---|---|
| maintainer_groups | list | | |
| path | string | Path after kw/[TYPE]/... | |
| type | string | Secret type, will be part of path, allowed values: '3rd-party', 'shared' | |
| use_groups | list | Bad practice: use assignment to developers groups in application-registry | [] |
| roles | list | [] |
use_policymaintainer_policyrole_policies