-
-
Notifications
You must be signed in to change notification settings - Fork 57
Expand file tree
/
Copy pathoutputs.tf
More file actions
40 lines (33 loc) · 1.41 KB
/
outputs.tf
File metadata and controls
40 lines (33 loc) · 1.41 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
output "user_name" {
description = "IAM user name"
value = join("", aws_iam_user.default.*.name)
}
output "user_arn" {
description = "The ARN assigned by AWS for this user"
value = join("", aws_iam_user.default.*.arn)
}
output "user_unique_id" {
description = "The unique ID assigned by AWS"
value = join("", aws_iam_user.default.*.unique_id)
}
output "user_login_profile_key_fingerprint" {
description = "The fingerprint of the PGP key used to encrypt the password"
value = join("", aws_iam_user_login_profile.default.*.key_fingerprint)
}
output "user_login_profile_encrypted_password" {
description = "The encrypted password, base64 encoded"
value = join("", aws_iam_user_login_profile.default.*.encrypted_password)
}
output "pgp_key" {
description = "PGP key used to encrypt sensitive data for this user"
value = var.pgp_key
}
output "keybase_password_decrypt_command" {
# https://stackoverflow.com/questions/36565256/set-the-aws-console-password-for-iam-user-with-terraform
description = "Command to decrypt the Keybase encrypted password. Returns empty string if pgp_key is not from keybase"
value = local.keybase_password_decrypt_command
}
output "keybase_password_pgp_message" {
description = "PGP encrypted message (e.g. suitable for email exchanges). Returns empty string if pgp_key is not from keybase"
value = local.keybase_password_pgp_message
}