publicWagsHome/modules
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

feat(hcp-vault-secrets): add project_id variable to HCP provider (#173)

Browse Source
This commit is contained in:
Muhammad Atif Ali
2024-02-26 20:50:42 +05:00
committed by GitHub
parent 08adb4a839
commit 407738b2be
2 changed files with 24 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
hcp-vault-secrets/README.md
View File

@@ -18,6 +18,7 @@ module "vault" {
version = "1.0.3" version = "1.0.3"
agent_id = coder_agent.example.id agent_id = coder_agent.example.id
app_name = "demo-app" app_name = "demo-app"
project_id = "aaa-bbb-ccc"
} }
``` ```
@@ -29,6 +30,7 @@ To configure the HCP Vault Secrets module, follow these steps,
2. Create an HCP Service Principal from the HCP Vault Secrets app in the HCP console. This will give you the `HCP_CLIENT_ID` and `HCP_CLIENT_SECRET` that you need to authenticate with HCP Vault Secrets. 2. Create an HCP Service Principal from the HCP Vault Secrets app in the HCP console. This will give you the `HCP_CLIENT_ID` and `HCP_CLIENT_SECRET` that you need to authenticate with HCP Vault Secrets.
![HCP vault secrets credentials](../.images/hcp-vault-secrets-credentials.png) ![HCP vault secrets credentials](../.images/hcp-vault-secrets-credentials.png)
3. Set `HCP_CLIENT_ID` and `HCP_CLIENT_SECRET` variables on the coder provisioner (recommended) or supply them as input to the module. 3. Set `HCP_CLIENT_ID` and `HCP_CLIENT_SECRET` variables on the coder provisioner (recommended) or supply them as input to the module.
4. Set the `project_id`. This is the ID of the project where the HCP Vault Secrets app is running.
> See the [HCP Vault Secrets documentation](https://developer.hashicorp.com/hcp/docs/vault-secrets) for more information. > See the [HCP Vault Secrets documentation](https://developer.hashicorp.com/hcp/docs/vault-secrets) for more information.
@@ -42,6 +44,7 @@ module "vault" {
version = "1.0.3" version = "1.0.3"
agent_id = coder_agent.example.id agent_id = coder_agent.example.id
app_name = "demo-app" app_name = "demo-app"
project_id = "aaa-bbb-ccc"
} }
``` ```
@@ -55,6 +58,7 @@ module "vault" {
version = "1.0.3" version = "1.0.3"
agent_id = coder_agent.example.id agent_id = coder_agent.example.id
app_name = "demo-app" app_name = "demo-app"
project_id = "aaa-bbb-ccc"
secrets = ["MY_SECRET_1", "MY_SECRET_2"] secrets = ["MY_SECRET_1", "MY_SECRET_2"]
} }
``` ```
@@ -69,6 +73,7 @@ module "vault" {
version = "1.0.3" version = "1.0.3"
agent_id = coder_agent.example.id agent_id = coder_agent.example.id
app_name = "demo-app" app_name = "demo-app"
project_id = "aaa-bbb-ccc"
client_id = "HCP_CLIENT_ID" client_id = "HCP_CLIENT_ID"
client_secret = "HCP_CLIENT_SECRET" client_secret = "HCP_CLIENT_SECRET"
} }

6
hcp-vault-secrets/main.tf
View File

@@ -16,6 +16,7 @@ terraform {
provider "hcp" { provider "hcp" {
client_id = var.client_id client_id = var.client_id
client_secret = var.client_secret client_secret = var.client_secret
project_id = var.project_id
} }
provider "coder" {} provider "coder" {}
@@ -25,6 +26,11 @@ variable "agent_id" {
description = "The ID of a Coder agent." description = "The ID of a Coder agent."
} }
variable "project_id" {
type = string
description = "The ID of the HCP project."
}
variable "client_id" { variable "client_id" {
type = string type = string
description = <<-EOF description = <<-EOF