kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1e8603192c7e0af4b508198437270a97d5292e85
hunfabric/tests/modules/kms/examples/basic.yaml
Ludovico Magnocavallo 1e8603192c Allow reusing IAM binding key across objects in kms module (#3775) 
* allow reusing IAM binding key across objects in kms module

* fix inventory
2026-03-02 08:06:37 +01:00

82 lines
2.6 KiB
YAML
Raw Blame History

# Copyright 2023 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
values:
module.kms.google_kms_crypto_key.default["key-a"]:
effective_labels:
goog-terraform-provisioned: 'true'
labels: null
name: key-a
purpose: ENCRYPT_DECRYPT
rotation_period: null
skip_initial_version_creation: false
terraform_labels:
goog-terraform-provisioned: 'true'
timeouts: null
module.kms.google_kms_crypto_key.default["key-b"]:
effective_labels:
goog-terraform-provisioned: 'true'
labels: null
name: key-b
purpose: ENCRYPT_DECRYPT
rotation_period: 604800s
skip_initial_version_creation: false
terraform_labels:
goog-terraform-provisioned: 'true'
timeouts: null
module.kms.google_kms_crypto_key.default["key-c"]:
effective_labels:
env: test
goog-terraform-provisioned: 'true'
labels:
env: test
name: key-c
purpose: ENCRYPT_DECRYPT
rotation_period: null
skip_initial_version_creation: false
terraform_labels:
env: test
goog-terraform-provisioned: 'true'
timeouts: null
module.kms.google_kms_crypto_key_iam_binding.authoritative["key-a.roles/cloudkms.admin"]:
condition: []
members:
- group:organization-admins@example.org
role: roles/cloudkms.admin
module.kms.google_kms_crypto_key_iam_binding.bindings["key-a:agent"]:
condition: []
members:
- serviceAccount:sa1@sa.example
role: roles/cloudkms.cryptoKeyEncrypterDecrypter
module.kms.google_kms_crypto_key_iam_binding.bindings["key-b:agent"]:
condition: []
members:
- serviceAccount:sa1@sa.example
role: roles/cloudkms.cryptoKeyEncrypterDecrypter
module.kms.google_kms_crypto_key_iam_member.members["key-b:key-b-iam1"]:
condition: []
member: group:organization-admins@example.org
role: roles/cloudkms.cryptoKeyEncrypterDecrypter
module.kms.google_kms_key_ring.default[0]:
location: europe-west8
name: test-test
project: project-id
timeouts: null
counts:
google_kms_crypto_key: 3
google_kms_crypto_key_iam_binding: 3
google_kms_crypto_key_iam_member: 1
google_kms_key_ring: 1
Reference in New Issue View Git Blame Copy Permalink