|
| 1 | +<!-- BEGIN_AUTOMATED_TF_DOCS_BLOCK --> |
| 2 | +## Requirements |
| 3 | + |
| 4 | +| Name | Version | |
| 5 | +|------|---------| |
| 6 | +| <a name="requirement_terraform"></a> [terraform](#requirement_terraform) | ~> 1.3 | |
| 7 | +| <a name="requirement_azurerm"></a> [azurerm](#requirement_azurerm) | <= 4.0 | |
| 8 | +| <a name="requirement_random"></a> [random](#requirement_random) | >= 3.1 | |
| 9 | +## Usage |
| 10 | +Basic usage of this module is as follows: |
| 11 | + ```hcl |
| 12 | + module "example" { |
| 13 | + source = "<module-path>" |
| 14 | + |
| 15 | + # Required variables |
| 16 | + keyvault_name = |
| 17 | + resource_group_name = |
| 18 | + |
| 19 | + # Optional variables |
| 20 | + application_name = "devwithkrishna" |
| 21 | + azure_disk_encryption_can_retrieve_secrets = false |
| 22 | + azure_resource_manager_can_retrieve_secrets = false |
| 23 | + azure_vms_can_access_certs_stored_as_secrets = false |
| 24 | + enable_rbac_authorization = false |
| 25 | + environment = "DEV" |
| 26 | + location = "" |
| 27 | + public_network_access_enabled = true |
| 28 | + purge_protection_enabled = false |
| 29 | + sku_name = "standard" |
| 30 | + soft_delete_retention_days = 90 |
| 31 | + temporary = "TRUE" |
| 32 | + } |
| 33 | + ``` |
| 34 | + |
| 35 | +## Resources |
| 36 | + |
| 37 | +| Name | Type | |
| 38 | +|------|------| |
| 39 | +| [azurerm_key_vault.kv](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/key_vault) | resource | |
| 40 | +| [azurerm_resource_group.keyvault_rg](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/resource_group) | resource | |
| 41 | +| [azurerm_client_config.current](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/data-sources/client_config) | data source | |
| 42 | + |
| 43 | +## Inputs |
| 44 | + |
| 45 | +| Name | Description | Type | Required | |
| 46 | +|------|-------------|------|:--------:| |
| 47 | +| <a name="input_application_name"></a> [application_name](#input_application_name) | Azure application name tag | `string` | no | |
| 48 | +| <a name="input_azure_disk_encryption_can_retrieve_secrets"></a> [azure_disk_encryption_can_retrieve_secrets](#input_azure_disk_encryption_can_retrieve_secrets) | Boolean flag to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys | `bool` | no | |
| 49 | +| <a name="input_azure_resource_manager_can_retrieve_secrets"></a> [azure_resource_manager_can_retrieve_secrets](#input_azure_resource_manager_can_retrieve_secrets) | Boolean flag to specify whether Azure Resource Manager is permitted to retrieve secrets from the vault | `bool` | no | |
| 50 | +| <a name="input_azure_vms_can_access_certs_stored_as_secrets"></a> [azure_vms_can_access_certs_stored_as_secrets](#input_azure_vms_can_access_certs_stored_as_secrets) | Boolean flag to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault | `bool` | no | |
| 51 | +| <a name="input_enable_rbac_authorization"></a> [enable_rbac_authorization](#input_enable_rbac_authorization) | Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions | `bool` | no | |
| 52 | +| <a name="input_environment"></a> [environment](#input_environment) | Environment tag value in Azure | `string` | no | |
| 53 | +| <a name="input_keyvault_name"></a> [keyvault_name](#input_keyvault_name) | Azure keyvault name | `string` | yes | |
| 54 | +| <a name="input_location"></a> [location](#input_location) | Azure keyvault location | `string` | no | |
| 55 | +| <a name="input_public_network_access_enabled"></a> [public_network_access_enabled](#input_public_network_access_enabled) | Whether public network access is allowed for this Key Vault | `bool` | no | |
| 56 | +| <a name="input_purge_protection_enabled"></a> [purge_protection_enabled](#input_purge_protection_enabled) | Purge Protection enabled or not | `bool` | no | |
| 57 | +| <a name="input_resource_group_name"></a> [resource_group_name](#input_resource_group_name) | Azure keyvault Rg | `string` | yes | |
| 58 | +| <a name="input_sku_name"></a> [sku_name](#input_sku_name) | Keyvault SKUs available in azure. Valid options are standard and premium | `string` | no | |
| 59 | +| <a name="input_soft_delete_retention_days"></a> [soft_delete_retention_days](#input_soft_delete_retention_days) | The number of days that items should be retained for once soft-deleted. This value can be between 7 and 90 | `number` | no | |
| 60 | +| <a name="input_temporary"></a> [temporary](#input_temporary) | Temporary tag value in Azure | `string` | no | |
| 61 | + |
| 62 | +## Outputs |
| 63 | + |
| 64 | +| Name | Description | |
| 65 | +|------|-------------| |
| 66 | +| <a name="output_azurerm_resource_group"></a> [azurerm_resource_group](#output_azurerm_resource_group) | Azure resource group name | |
| 67 | +| <a name="output_enable_rbac_authorization"></a> [enable_rbac_authorization](#output_enable_rbac_authorization) | Azure kv RBAC access enabled or not | |
| 68 | +| <a name="output_enabled_for_deployment"></a> [enabled_for_deployment](#output_enabled_for_deployment) | Azure vms can access certs from kv | |
| 69 | +| <a name="output_enabled_for_disk_encryption"></a> [enabled_for_disk_encryption](#output_enabled_for_disk_encryption) | Azure disk encryption can access keys from keyvault or not | |
| 70 | +| <a name="output_enabled_for_template_deployment"></a> [enabled_for_template_deployment](#output_enabled_for_template_deployment) | Azure resource manager can access secrets or not | |
| 71 | +| <a name="output_keyvault_location"></a> [keyvault_location](#output_keyvault_location) | Azure keyvault location | |
| 72 | +| <a name="output_keyvault_name"></a> [keyvault_name](#output_keyvault_name) | Azure keyvault name | |
| 73 | +| <a name="output_keyvault_sku"></a> [keyvault_sku](#output_keyvault_sku) | Azure Keyvault SKu | |
| 74 | +| <a name="output_public_access_enabled"></a> [public_access_enabled](#output_public_access_enabled) | Azure kv enabled public access or not | |
| 75 | +<!-- END_AUTOMATED_TF_DOCS_BLOCK --> |
0 commit comments