kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Refactor secret manager module (#3315)

Browse Source 
* wip

* wip

* wip

* wip

* tested, missing versions

* working

* fix secops stage

* readme

* tests

* tflint
This commit is contained in:
Ludovico Magnocavallo
2025-09-10 13:47:35 +02:00
committed by GitHub
parent c1e8f9d70c
commit 63a22cd9a2
25 changed files with 1222 additions and 513 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
modules/cloud-function-v1/README.md
View File

@@ -280,7 +280,7 @@ module "cf-http" {
project_id = var.project_number # use project_number to avoid perm-diff
secret = reverse(split("/", module.secret-manager.secrets["credentials"].name))[0]
versions = [
"${module.secret-manager.version_versions["credentials:v1"]}:/ver1"
"${module.secret-manager.version_versions["credentials/v1"]}:/ver1"
]
}
}
@@ -288,7 +288,7 @@ module "cf-http" {
google_project_iam_member.bucket_default_compute_account_grant,
]
}
# tftest fixtures=fixtures/secret-credentials.tf,fixtures/functions-default-sa-iam-grants.tf inventory=secrets.yaml e2e
# tftest fixtures=fixtures/secret-credentials.tf,fixtures/functions-default-sa-iam-grants.tf inventory=secrets.yaml e2e skip-tofu
```
### Using CMEK to encrypt function resources