Terraform: Adjust TTL for AWS credentials

author pmikus <pmikus@cisco.com>

Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)

committer pmikus <pmikus@cisco.com>

Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)
author pmikus <pmikus@cisco.com>
Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)
committer pmikus <pmikus@cisco.com>
Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)
diff --git a/fdio.infra.terraform/1n_nmd/aws/main.tf b/fdio.infra.terraform/1n_nmd/aws/main.tf

index 6768203..8084eb4 100644 (file)
--- a/fdio.infra.terraform/1n_nmd/aws/main.tf
+++ b/fdio.infra.terraform/1n_nmd/aws/main.tf
@@ -3,8 +3,8 @@ resource "vault_aws_secret_backend" "aws" {
    secret_key                = var.aws_secret_key
    path                      = "${var.name}-path"
  
-  default_lease_ttl_seconds = "120"
-  max_lease_ttl_seconds     = "240"
+  default_lease_ttl_seconds = "43200"
+  max_lease_ttl_seconds     = "43200"
  }
  
  resource "vault_aws_secret_backend_role" "admin" {
@@ -34,4 +34,4 @@ output "backend" {
  
  output "role" {
    value                     = vault_aws_secret_backend_role.admin.name
-}
-\ No newline at end of file
+}
diff --git a/fdio.infra.terraform/1n_nmd/aws/variables.tf b/fdio.infra.terraform/1n_nmd/aws/variables.tf

index 11c3535..4e5f61f 100644 (file)
--- a/fdio.infra.terraform/1n_nmd/aws/variables.tf
+++ b/fdio.infra.terraform/1n_nmd/aws/variables.tf
@@ -1,9 +1,11 @@
  variable "aws_access_key" {
+    sensitive = true
  }
  
  variable "aws_secret_key" {
+    sensitive = true
  }
  
  variable "name" {
-    default = "dynamic-aws-creds-vault-admin"
+    default   = "dynamic-aws-creds-vault-admin"
  }
 \ No newline at end of file
author	pmikus <pmikus@cisco.com>
	Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)
committer	pmikus <pmikus@cisco.com>
	Fri, 3 Sep 2021 12:22:24 +0000 (12:22 +0000)
fdio.infra.terraform/1n_nmd/aws/main.tf		patch \| blob \| history
fdio.infra.terraform/1n_nmd/aws/variables.tf		patch \| blob \| history