From: pmikus <pmikus@cisco.com>
Date: Fri, 3 Sep 2021 12:22:24 +0000 (+0000)
Subject: Terraform: Adjust TTL for AWS credentials
X-Git-Url: https://gerrit.fd.io/r/gitweb?p=csit.git;a=commitdiff_plain;h=a20f38f8eb837c9d1edfad170864664d7dca441c

Terraform: Adjust TTL for AWS credentials

Signed-off-by: pmikus <pmikus@cisco.com>
Change-Id: Ieab27460dc116185fa8d9819523f4e388159acdc
---

diff --git a/fdio.infra.terraform/1n_nmd/aws/main.tf b/fdio.infra.terraform/1n_nmd/aws/main.tf
index 6768203441..8084eb4e33 100644
--- a/fdio.infra.terraform/1n_nmd/aws/main.tf
+++ b/fdio.infra.terraform/1n_nmd/aws/main.tf
@@ -3,8 +3,8 @@ resource "vault_aws_secret_backend" "aws" {
   secret_key                = var.aws_secret_key
   path                      = "${var.name}-path"
 
-  default_lease_ttl_seconds = "120"
-  max_lease_ttl_seconds     = "240"
+  default_lease_ttl_seconds = "43200"
+  max_lease_ttl_seconds     = "43200"
 }
 
 resource "vault_aws_secret_backend_role" "admin" {
@@ -34,4 +34,4 @@ output "backend" {
 
 output "role" {
   value                     = vault_aws_secret_backend_role.admin.name
-}
\ No newline at end of file
+}
diff --git a/fdio.infra.terraform/1n_nmd/aws/variables.tf b/fdio.infra.terraform/1n_nmd/aws/variables.tf
index 11c3535266..4e5f61f238 100644
--- a/fdio.infra.terraform/1n_nmd/aws/variables.tf
+++ b/fdio.infra.terraform/1n_nmd/aws/variables.tf
@@ -1,9 +1,11 @@
 variable "aws_access_key" {
+    sensitive = true
 }
 
 variable "aws_secret_key" {
+    sensitive = true
 }
 
 variable "name" {
-    default = "dynamic-aws-creds-vault-admin"
+    default   = "dynamic-aws-creds-vault-admin"
 }
\ No newline at end of file