2024-05-26 20:14:00 +00:00
|
|
|
output "approle_mount" {
|
|
|
|
value = vault_auth_backend.approle
|
|
|
|
sensitive = true
|
|
|
|
description = "The approle mount for the tenant"
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
output "root_role" {
|
2024-05-24 22:32:21 +00:00
|
|
|
value = {
|
2024-05-26 20:14:00 +00:00
|
|
|
role_id = vault_approle_auth_backend_role.root.role_name
|
|
|
|
secret_id = vault_approle_auth_backend_role_secret_id.root.secret_id
|
2024-05-24 22:32:21 +00:00
|
|
|
}
|
|
|
|
sensitive = true
|
2024-05-26 20:14:00 +00:00
|
|
|
description = "The tenant root approle role"
|
2024-05-24 22:32:21 +00:00
|
|
|
depends_on = [
|
2024-05-26 20:14:00 +00:00
|
|
|
vault_approle_auth_backend_role.root,
|
|
|
|
vault_approle_auth_backend_role_secret_id.root
|
2024-05-24 22:32:21 +00:00
|
|
|
]
|
|
|
|
}
|
|
|
|
|
2024-05-26 20:14:00 +00:00
|
|
|
output "root_policy" {
|
|
|
|
value = vault_policy.root.name
|
2024-05-24 22:32:21 +00:00
|
|
|
sensitive = false
|
2024-05-26 20:14:00 +00:00
|
|
|
description = "The tenant root policy name"
|
|
|
|
depends_on = [vault_policy.root]
|
2024-05-24 22:32:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
output "extra_roles" {
|
|
|
|
value = {
|
2024-05-26 20:24:33 +00:00
|
|
|
for key, role in vault_approle_auth_backend_role.extra :
|
2024-05-24 22:32:21 +00:00
|
|
|
key => {
|
|
|
|
role_id = role.role_name
|
2024-05-26 20:24:33 +00:00
|
|
|
secret_id = vault_approle_auth_backend_role_secret_id.extra[key].secret_id
|
2024-05-24 22:32:21 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
sensitive = true
|
|
|
|
description = "The tenant extra approle roles"
|
|
|
|
depends_on = [
|
2024-05-26 20:24:33 +00:00
|
|
|
vault_approle_auth_backend_role.extra,
|
|
|
|
vault_approle_auth_backend_role_secret_id.extra
|
2024-05-24 22:32:21 +00:00
|
|
|
]
|
|
|
|
}
|
|
|
|
|
|
|
|
output "extra_role_policies" {
|
|
|
|
value = {
|
2024-05-26 20:25:55 +00:00
|
|
|
for key, policy in vault_policy.extra :
|
2024-05-24 22:32:21 +00:00
|
|
|
key => policy.name
|
|
|
|
}
|
|
|
|
sensitive = false
|
|
|
|
description = "The tenant extra role policy names"
|
2024-05-26 20:25:55 +00:00
|
|
|
depends_on = [vault_policy.extra]
|
2024-05-24 22:32:21 +00:00
|
|
|
}
|