62 lines
1.5 KiB
Markdown
62 lines
1.5 KiB
Markdown
# Azure Key Vault Module
|
|
|
|
**Purpose**: Create Azure Key Vault with RBAC
|
|
**Status**: 🚧 Planned
|
|
|
|
---
|
|
|
|
## Usage
|
|
|
|
```hcl
|
|
module "keyvault" {
|
|
source = "../../modules/azure/keyvault"
|
|
|
|
resource_group_name = "rg-example"
|
|
location = "eastus"
|
|
keyvault_name = "kv-example"
|
|
|
|
access_policies = [
|
|
{
|
|
object_id = var.service_principal_id
|
|
key_permissions = ["Get", "List"]
|
|
secret_permissions = ["Get", "List"]
|
|
}
|
|
]
|
|
|
|
tags = {
|
|
Environment = "production"
|
|
}
|
|
}
|
|
```
|
|
|
|
---
|
|
|
|
## Inputs
|
|
|
|
| Name | Description | Type | Default | Required |
|
|
|------|-------------|------|---------|----------|
|
|
| resource_group_name | Name of the resource group | string | - | yes |
|
|
| location | Azure region | string | - | yes |
|
|
| keyvault_name | Name of the Key Vault | string | - | yes |
|
|
| sku_name | SKU name (standard or premium) | string | "standard" | no |
|
|
| enabled_for_deployment | Enable for VM deployment | bool | false | no |
|
|
| enabled_for_disk_encryption | Enable for disk encryption | bool | false | no |
|
|
| enabled_for_template_deployment | Enable for template deployment | bool | false | no |
|
|
| access_policies | List of access policies | list(object) | [] | no |
|
|
| tags | Tags to apply | map(string) | {} | no |
|
|
|
|
---
|
|
|
|
## Outputs
|
|
|
|
| Name | Description |
|
|
|------|-------------|
|
|
| keyvault_id | Key Vault ID |
|
|
| keyvault_uri | Key Vault URI |
|
|
| keyvault_name | Key Vault name |
|
|
|
|
---
|
|
|
|
**Status**: 🚧 Planned - Module structure ready, implementation pending
|
|
|