Skip to content

Commit

Permalink
feat: exposed the ability to skip COS / KMS s2s auth policy with new …
Browse files Browse the repository at this point in the history
…variable `skip_cos_kms_auth_policy`<br>- fixed bug where `existing_cos_instance_crn` was not being passed to COS module (#217)
  • Loading branch information
Soaib024 authored Jun 10, 2024
1 parent 30de756 commit 8291ed6
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 0 deletions.
2 changes: 2 additions & 0 deletions solutions/standard/main.tf
Original file line number Diff line number Diff line change
Expand Up @@ -85,6 +85,8 @@ module "cos" {
version = "8.3.2"
create_cos_instance = var.existing_cos_instance_crn == null ? true : false
create_cos_bucket = var.existing_cos_bucket_name == null ? true : false
existing_cos_instance_id = var.existing_cos_instance_crn
skip_iam_authorization_policy = var.skip_cos_kms_auth_policy
add_bucket_name_suffix = var.add_bucket_name_suffix
resource_group_id = module.resource_group.resource_group_id
region = local.cos_bucket_region
Expand Down
6 changes: 6 additions & 0 deletions solutions/standard/variables.tf
Original file line number Diff line number Diff line change
Expand Up @@ -176,6 +176,12 @@ variable "skip_en_cos_auth_policy" {
default = false
}

variable "skip_cos_kms_auth_policy" {
type = bool
description = "Whether an IAM authorization policy is created for your Cloud Object Storage instance to read the encryption key from the KMS instance. Set to `true` to use an existing policy."
default = false
}

variable "cos_instance_name" {
type = string
default = "base-security-services-cos"
Expand Down

0 comments on commit 8291ed6

Please sign in to comment.