Secrets Manager Addon

The secretsmgr-addon module adds AWS Secrets Manager access to a Sym runtime connector module.

This Addon will add a policy to the role generated by a Connector.

You typically include this Addon by adding aws/secretsmgr to the addons property of the runtime connector module, rather than referring to the policy ARN itself.

Secrets must be tagged with ${var.tag_name}=${var.environment} in order to be accessible by this addon.

module "runtime_connector" {
  source  = "terraform.symops.com/symopsio/runtime-connector/sym"
  version = ">= 1.0.0"

  addons      = [ "aws/secretsmgr" ]
  environment = "sandbox"
}

Outputs

NameDescription
policy_arnSecrets access policy arn

Inputs

NameTypeDefaultRequired
environmentstringn/ayes
tag_namestring"SymEnv"no

Required Inputs

The following input variables are required:

environment

Description: An environment qualifier for the resources this module creates, to support a Terraform SDLC. The environment value is also the tag value that secrets must be tagged with to be accessible by this addon.

Type: string

Optional Inputs

The following input variables are optional (have default values):

tag_name

Description: Name of the tag that secrets must be tagged with to be accessible by this addon.

Type: string

Default: "SymEnv"


Did this page help you?