✨ (docs/tutorial.md): add support for retrieving project API keys using data source

gabornyergesX · gabornyergesX · commit 4b022ecc7156 · 2025-01-02T13:00:05.000+01:00
♻️ (docs/tutorial.md): refactor code to use Terraform data sources instead of hardcoded values
diff --git a/docs/data-sources/project_apikeys.md b/docs/data-sources/project_apikeys.md
@@ -0,0 +1,25 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "supabase_project_apikeys Data Source - terraform-provider-supabase"
+subcategory: ""
+description: |-
+  Project API Keys data source
+---
+
+# supabase_project_apikeys (Data Source)
+
+Project API Keys data source
+
+
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `project_id` (String) Project identifier
+
+### Read-Only
+
+- `anon_key` (String, Sensitive) Anonymous API key for the project
+- `service_role_key` (String, Sensitive) Service role API key for the project
diff --git a/docs/tutorial.md b/docs/tutorial.md
@@ -41,11 +41,27 @@ resource "supabase_project" "production" {
     ignore_changes = [database_password]
   }
 }
+
+# Retrieve project API keys
+data "supabase_project_apikeys" "production" {
+  project_id = supabase_project.production.id
+}
+
+# Output the API keys (careful with sensitive data!)
+output "anon_key" {
+  value     = data.supabase_project_apikeys.production.anon_key
+  sensitive = true
+}
+
+output "service_role_key" {
+  value     = data.supabase_project_apikeys.production.service_role_key
+  sensitive = true
+}
 ```
 
-Remember to substitute placeholder values with your own. For sensitive fields such as the password, consider storing and retrieving them from a secure credentials store.
+Remember to substitute placeholder values with your own. For sensitive fields such as the password, consider storing and retrieving them from a secure credentials store. The API keys are marked as sensitive and will be hidden in logs, but make sure to handle them securely in your workflow.
 
-Next, run `terraform -chdir=module apply` to create the new project resource.
+Next, run `terraform -chdir=module apply` to create the new project resource and retrieve its API keys.
 
 ### Importing a project
 
@@ -75,6 +91,11 @@ resource "supabase_project" "production" {
     ignore_changes = [database_password]
   }
 }
+
+# Retrieve project API keys
+data "supabase_project_apikeys" "production" {
+  project_id = supabase_project.production.id
+}
 ```
 
 Run `terraform -chdir=module apply`. Enter the ID of your Supabase project at the prompt. If your local TF state is empty, your project will be imported from remote rather than recreated.
