-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdeployments.tfdeploy.hcl
38 lines (35 loc) · 1.43 KB
/
deployments.tfdeploy.hcl
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
identity_token "aws" {
audience = ["aws.workload.identity"]
}
identity_token "vault_secrets" {
audience = ["hcp.workload.identity"]
}
deployment "development" {
inputs = {
regions = {
"us-east-1" : "use1",
}
env = "dev"
role_arn = "arn:aws:iam::056618128975:role/terraform-cloud-oidc-access-deployment-role"
identity_token_file = identity_token.aws.jwt_filename
default_tags = { deployment-name = "development"}
cidr = "10.1.0.0/16"
workload_idp_name = "iam/project/1a809607-5649-4d32-804b-c6d0b906122c/service-principal/vault-secrets/workload-identity-provider/my-workload-identity-provider"
identity_token_file_vault = identity_token.vault_secrets.jwt_filename
}
}
deployment "production" {
inputs = {
regions = {
"us-east-1" : "use1",
"eu-west-1" : "euw1",
}
env = "prod"
role_arn = "arn:aws:iam::056618128975:role/terraform-cloud-oidc-access-deployment-role"
identity_token_file = identity_token.aws.jwt_filename
default_tags = { deployment-name = "production"}
cidr = "10.10.0.0/16"
workload_idp_name = "iam/project/1a809607-5649-4d32-804b-c6d0b906122c/service-principal/vault-secrets/workload-identity-provider/my-workload-identity-provider"
identity_token_file_vault = identity_token.vault_secrets.jwt_filename
}
}