azure-data-labs-modules/terraform/key-vault at main · Azure/azure-data-labs-modules · GitHub

Name		Name	Last commit message	Last commit date
parent directory ..
test		test
README.md		README.md
main.tf		main.tf
outputs.tf		outputs.tf
variables.tf		variables.tf

README.md

Resources

Name	Type
azurerm_key_vault.adl_kv	resource
azurerm_client_config.current	data source

Inputs

Name	Description	Type	Default	Required
basename	Basename of the module.	`string`	n/a	yes
resource_group_name	Resource group name.	`string`	n/a	yes
location	Location of the resource group.	`string`	n/a	yes
tags	A mapping of tags which should be assigned to the deployed resource.	`map(string)`	`{}`	no
module_enabled	Variable to enable or disable the module.	`bool`	`true`	no
is_private_endpoint	Whether private endpoints are enabled to access the resource.	`bool`	`true`	no
public_network_access_enabled	Whether or not public network access is allowed for this resource.	`bool`	`false`	no
subnet_id	The ID of the subnet from which private IP addresses will be allocated for this Private Endpoint.	`string`	`""`	no
private_dns_zone_ids	Specifies the list of Private DNS Zones to include.	`list(string)`	`[]`	no
sku_name	The Name of the SKU used for this Key Vault.	`string`	`"standard"`	no
enabled_for_disk_encryption	Boolean flag to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys.	`bool`	`false`	no
soft_delete_retention_days	The number of days that items should be retained for once soft-deleted.	`number`	`90`	no
purge_protection_enabled	Is Purge Protection enabled for this Key Vault?	`bool`	`true`	no
enabled_for_deployment	Boolean flag to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault.	`bool`	`false`	no
firewall_virtual_network_subnet_ids	A list of virtual network subnet ids to to secure the storage account.	`list(string)`	`[]`	no
firewall_default_action	Specifies the default action of allow or deny when no other rules match.	`string`	`"Deny"`	no
firewall_ip_rules	List of public IP or IP ranges in CIDR Format.	`list(string)`	`[]`	no
firewall_bypass	Specifies whether traffic is bypassed for Logging/Metrics/AzureServices.	`string`	`"AzureServices"`	no

Outputs

Name	Description
id	Resource identifier of the instance of Azure Key Vault.
name	The name of the Azure Key Vault.
resource_group_name	Resource Group where the Azure Key Vault exists.