aboutsummaryrefslogtreecommitdiffstats
path: root/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend
diff options
context:
space:
mode:
Diffstat (limited to 'fdio.infra.terraform/1n_nmd/vault-aws-secret-backend')
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/main.tf17
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/providers.tf5
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/variables.tf17
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/versions.tf13
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/main.tf37
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/variables.tf17
-rw-r--r--fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/versions.tf8
7 files changed, 0 insertions, 114 deletions
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/main.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/main.tf
deleted file mode 100644
index 4473dafda8..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/main.tf
+++ /dev/null
@@ -1,17 +0,0 @@
-module "fdio-logs" {
- # fdio logs iam
- source = "../"
- name = "dynamic-aws-creds-vault-fdio-logs"
-}
-
-module "fdio-docs" {
- # fdio docs iam
- source = "../"
- name = "dynamic-aws-creds-vault-fdio-docs"
-}
-
-module "fdio-csit-jenkins" {
- # fdio csit jenkins iam
- source = "../"
- name = "dynamic-aws-creds-vault-fdio-csit-jenkins"
-}
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/providers.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/providers.tf
deleted file mode 100644
index 102fd31b87..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/providers.tf
+++ /dev/null
@@ -1,5 +0,0 @@
-provider "vault" {
- address = var.vault_provider_address
- skip_tls_verify = var.vault_provider_skip_tls_verify
- token = var.vault_provider_token
-} \ No newline at end of file
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/variables.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/variables.tf
deleted file mode 100644
index e36ed08473..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/variables.tf
+++ /dev/null
@@ -1,17 +0,0 @@
-variable "vault_provider_address" {
- description = "Vault cluster address."
- type = string
- default = "http://10.30.51.28:8200"
-}
-
-variable "vault_provider_skip_tls_verify" {
- description = "Verification of the Vault server's TLS certificate"
- type = bool
- default = false
-}
-
-variable "vault_provider_token" {
- description = "Vault root token"
- type = string
- sensitive = true
-}
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/versions.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/versions.tf
deleted file mode 100644
index ec03c7c9ee..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/fdio/versions.tf
+++ /dev/null
@@ -1,13 +0,0 @@
-terraform {
- backend "consul" {
- address = "consul.service.consul:8500"
- scheme = "http"
- path = "fdio/terraform/1n/nomad"
- }
- required_providers {
- vault = {
- version = ">= 3.2.1"
- }
- }
- required_version = ">= 1.1.4"
-}
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/main.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/main.tf
deleted file mode 100644
index a65c390792..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/main.tf
+++ /dev/null
@@ -1,37 +0,0 @@
-resource "vault_aws_secret_backend" "aws" {
- access_key = var.aws_access_key
- secret_key = var.aws_secret_key
- path = "${var.name}-path"
-
- default_lease_ttl_seconds = "0"
- max_lease_ttl_seconds = "0"
-}
-
-resource "vault_aws_secret_backend_role" "admin" {
- backend = vault_aws_secret_backend.aws.path
- name = "${var.name}-role"
- credential_type = "iam_user"
-
- policy_document = <<EOF
-{
- "Version": "2012-10-17",
- "Statement": [
- {
- "Effect": "Allow",
- "Action": [
- "iam:*", "ec2:*"
- ],
- "Resource": "*"
- }
- ]
-}
-EOF
-}
-
-output "backend" {
- value = vault_aws_secret_backend.aws.path
-}
-
-output "role" {
- value = vault_aws_secret_backend_role.admin.name
-}
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/variables.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/variables.tf
deleted file mode 100644
index 2545345185..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/variables.tf
+++ /dev/null
@@ -1,17 +0,0 @@
-variable "aws_access_key" {
- description = "AWS access key"
- type = string
- sensitive = true
-}
-
-variable "aws_secret_key" {
- description = "AWS secret key"
- type = string
- sensitive = true
-}
-
-variable "name" {
- default = "dynamic-aws-creds-vault"
- description = "Vault path"
- type = string
-}
diff --git a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/versions.tf b/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/versions.tf
deleted file mode 100644
index 996288568d..0000000000
--- a/fdio.infra.terraform/1n_nmd/vault-aws-secret-backend/versions.tf
+++ /dev/null
@@ -1,8 +0,0 @@
-terraform {
- required_providers {
- vault = {
- version = ">=2.22.1"
- }
- }
- required_version = ">= 1.1.4"
-}