You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
| <aname="input_kms_key_arn"></a> [kms\_key\_arn](#input\_kms\_key\_arn)| The ARN for the KMS encryption key. When specifying `kms_key_arn`, `encrypted` needs to be set to `true`|`string`|`null`| no |
256
256
| <aname="input_logging"></a> [logging](#input\_logging)| Logging configuration for the cluster |`any`|`{}`| no |
257
257
| <aname="input_maintenance_track_name"></a> [maintenance\_track\_name](#input\_maintenance\_track\_name)| The name of the maintenance track for the restored cluster. When you take a snapshot, the snapshot inherits the MaintenanceTrack value from the cluster. The snapshot might be on a different track than the cluster that was the source for the snapshot. Default value is `current`|`string`|`null`| no |
258
+
| <aname="input_manage_master_password"></a> [manage\_master\_password](#input\_manage\_master\_password)| (Optional) Whether to use AWS SecretsManager to manage the cluster admin credentials. Conflicts with master\_password. One of master\_password or manage\_master\_password is required unless snapshot\_identifier is provided. |`bool`|`null`| no |
258
259
| <aname="input_manual_snapshot_retention_period"></a> [manual\_snapshot\_retention\_period](#input\_manual\_snapshot\_retention\_period)| The default number of days to retain a manual snapshot. If the value is -1, the snapshot is retained indefinitely. This setting doesn't change the retention period of existing snapshots. Valid values are between `-1` and `3653`. Default value is `-1`|`number`|`null`| no |
259
260
| <aname="input_master_password"></a> [master\_password](#input\_master\_password)| Password for the master DB user. (Required unless a `snapshot_identifier` is provided). Must contain at least 8 chars, one uppercase letter, one lowercase letter, and one number |`string`|`null`| no |
261
+
| <aname="input_master_password_secret_kms_key_id"></a> [master\_password\_secret\_kms\_key\_id](#input\_master\_password\_secret\_kms\_key\_id)| (Optional) ID of the KMS key used to encrypt the cluster admin credentials secret. |`string`|`null`| no |
260
262
| <aname="input_master_username"></a> [master\_username](#input\_master\_username)| Username for the master DB user (Required unless a `snapshot_identifier` is provided). Defaults to `awsuser`|`string`|`"awsuser"`| no |
261
263
| <aname="input_node_type"></a> [node\_type](#input\_node\_type)| The node type to be provisioned for the cluster |`string`|`""`| no |
262
264
| <aname="input_number_of_nodes"></a> [number\_of\_nodes](#input\_number\_of\_nodes)| Number of nodes in the cluster. Defaults to 1. Note: values greater than 1 will trigger `cluster_type` to switch to `multi-node`|`number`|`1`| no |
@@ -318,6 +320,7 @@ No modules.
318
320
| <aname="output_endpoint_access_id"></a> [endpoint\_access\_id](#output\_endpoint\_access\_id)| The Redshift-managed VPC endpoint name |
319
321
| <aname="output_endpoint_access_port"></a> [endpoint\_access\_port](#output\_endpoint\_access\_port)| The port number on which the cluster accepts incoming connections |
320
322
| <aname="output_endpoint_access_vpc_endpoint"></a> [endpoint\_access\_vpc\_endpoint](#output\_endpoint\_access\_vpc\_endpoint)| The connection endpoint for connecting to an Amazon Redshift cluster through the proxy. See details below |
323
+
| <aname="output_master_password_secret_arn"></a> [master\_password\_secret\_arn](#output\_master\_password\_secret\_arn)| ARN of managed master password secret |
321
324
| <aname="output_parameter_group_arn"></a> [parameter\_group\_arn](#output\_parameter\_group\_arn)| Amazon Resource Name (ARN) of the parameter group created |
322
325
| <aname="output_parameter_group_id"></a> [parameter\_group\_id](#output\_parameter\_group\_id)| The name of the Redshift parameter group created |
323
326
| <aname="output_scheduled_action_iam_role_arn"></a> [scheduled\_action\_iam\_role\_arn](#output\_scheduled\_action\_iam\_role\_arn)| Scheduled actions IAM role ARN |
| <aname="output_endpoint_access_id"></a> [endpoint\_access\_id](#output\_endpoint\_access\_id)| The Redshift-managed VPC endpoint name |
90
90
| <aname="output_endpoint_access_port"></a> [endpoint\_access\_port](#output\_endpoint\_access\_port)| The port number on which the cluster accepts incoming connections |
91
91
| <aname="output_endpoint_access_vpc_endpoint"></a> [endpoint\_access\_vpc\_endpoint](#output\_endpoint\_access\_vpc\_endpoint)| The connection endpoint for connecting to an Amazon Redshift cluster through the proxy. See details below |
92
+
| <aname="output_master_password_secret_arn"></a> [master\_password\_secret\_arn](#output\_master\_password\_secret\_arn)| ARN of managed master password secret |
92
93
| <aname="output_parameter_group_arn"></a> [parameter\_group\_arn](#output\_parameter\_group\_arn)| Amazon Resource Name (ARN) of the parameter group created |
93
94
| <aname="output_parameter_group_id"></a> [parameter\_group\_id](#output\_parameter\_group\_id)| The name of the Redshift parameter group created |
94
95
| <aname="output_scheduled_action_iam_role_arn"></a> [scheduled\_action\_iam\_role\_arn](#output\_scheduled\_action\_iam\_role\_arn)| Scheduled actions IAM role ARN |
description="(Optional) Whether to use AWS SecretsManager to manage the cluster admin credentials. Conflicts with master_password. One of master_password or manage_master_password is required unless snapshot_identifier is provided."
129
+
type=bool
130
+
default=null
131
+
}
132
+
133
+
variable"master_password_secret_kms_key_id" {
134
+
description="(Optional) ID of the KMS key used to encrypt the cluster admin credentials secret."
135
+
type=string
136
+
default=null
137
+
}
138
+
126
139
variable"master_password" {
127
140
description="Password for the master DB user. (Required unless a `snapshot_identifier` is provided). Must contain at least 8 chars, one uppercase letter, one lowercase letter, and one number"
0 commit comments