File tree Expand file tree Collapse file tree 2 files changed +9
-4
lines changed
solutions/fully-configurable Expand file tree Collapse file tree 2 files changed +9
-4
lines changed Original file line number Diff line number Diff line change @@ -27,7 +27,7 @@ The following resources are provisioned by this example:
2727| <a name =" module_existing_cluster_kms_key_crn_parser " ></a > [ existing\_ cluster\_ kms\_ key\_ crn\_ parser] ( #module\_ existing\_ cluster\_ kms\_ key\_ crn\_ parser ) | terraform-ibm-modules/common-utilities/ibm//modules/crn-parser | 1.1.0 |
2828| <a name =" module_existing_kms_crn_parser " ></a > [ existing\_ kms\_ crn\_ parser] ( #module\_ existing\_ kms\_ crn\_ parser ) | terraform-ibm-modules/common-utilities/ibm//modules/crn-parser | 1.1.0 |
2929| <a name =" module_existing_vpc_crn_parser " ></a > [ existing\_ vpc\_ crn\_ parser] ( #module\_ existing\_ vpc\_ crn\_ parser ) | terraform-ibm-modules/common-utilities/ibm//modules/crn-parser | 1.1.0 |
30- | <a name =" module_kms " ></a > [ kms] ( #module\_ kms ) | terraform-ibm-modules/kms-all-inclusive/ibm | 4.21.2 |
30+ | <a name =" module_kms " ></a > [ kms] ( #module\_ kms ) | terraform-ibm-modules/kms-all-inclusive/ibm | 4.21.4 |
3131| <a name =" module_ocp_base " ></a > [ ocp\_ base] ( #module\_ ocp\_ base ) | ../.. | n/a |
3232| <a name =" module_resource_group " ></a > [ resource\_ group] ( #module\_ resource\_ group ) | terraform-ibm-modules/resource-group/ibm | 1.1.6 |
3333
Original file line number Diff line number Diff line change @@ -93,9 +93,9 @@ module "kms" {
9393 providers =
9494 ibm = ibm.kms
9595 }
96- count = . kms_encryption_enabled_boot_volume || var. kms_encryption_enabled_cluster ) && var. existing_cluster_kms_key_crn == null ? 1 : 0
96+ count = . kms_encryption_enabled_boot_volume && var . existing_boot_volume_kms_key_crn == null ) || ( var. kms_encryption_enabled_cluster && var. existing_cluster_kms_key_crn == null ) ? 1 : 0
9797 source = " terraform-ibm-modules/kms-all-inclusive/ibm"
98- version = " 4.21.2 "
98+ version = " 4.21.4 "
9999 create_key_protect_instance = false
100100 region = . cluster_kms_region
101101 existing_kms_instance_crn = . existing_kms_instance_crn
@@ -167,7 +167,12 @@ locals {
167167 }
168168 additional_security_group_ids = var.additional_security_group_ids
169169 }
170- ], [for pool in var . additional_worker_pools : pool if length (pool. vpc_subnets ) > 0 ],
170+ ], [for pool in var . additional_worker_pools : merge (pool, { resource_group_id = module.resource_group.resource_group_id
171+ boot_volume_encryption_kms_config = {
172+ crk = local.boot_volume_kms_key_id
173+ kms_instance_id = local.boot_volume_existing_kms_guid
174+ kms_account_id = local.boot_volume_kms_account_id
175+ } }) if length (pool. vpc_subnets ) > 0 ],
171176 [for pool in var . additional_worker_pools : {
172177 pool_name = pool.pool_name
173178 machine_type = pool.machine_type
You can’t perform that action at this time.
0 commit comments