scalr_provider_configuration
Resource scalr_provider_configuration
scalr_provider_configuration
A provider configuration helps organizations manage provider secrets in a centralized way.
It natively supports the management of the major providers like Scalr, AWS, AzureRM, and Google Cloud Platform,
but also allows registering any custom provider. Please have a look at the basic usage examples for each provider type.
Basic Usage
Scalr provider:
resource "scalr_provider_configuration" "scalr" {
name = "scalr"
account_id = "acc-xxxxxxxxx"
scalr {
hostname = "scalr.host.example.com"
token = "my-scalr-token"
}
}
Aws provider:
resource "scalr_provider_configuration" "aws" {
name = "aws_dev_us_east_1"
account_id = "acc-xxxxxxxxx"
export_shell_variables = false
environments = [scalr_environment.env1.id]
aws {
account_type = "regular"
credentials_type = "access_keys"
secret_key = "my-secret-key"
access_key = "my-access-key"
}
}
To get into more advanced AWS usage please refer to the official AWS module.
AzureRM provider:
resource "scalr_provider_configuration" "azurerm" {
name = "azurerm"
account_id = "acc-xxxxxxxxx"
azurerm {
client_id = "my-client-id"
client_secret = "my-client-secret"
subscription_id = "my-subscription-id"
tenant_id = "my-tenant-id"
}
}
Google provider:
resource "scalr_provider_configuration" "google" {
name = "google_main"
account_id = "acc-xxxxxxxxx"
google {
project = "my-project"
credentials = "my-credentials"
}
}
Custom providers:
resource "scalr_provider_configuration" "kubernetes" {
name = "k8s"
account_id = "acc-xxxxxxxxx"
custom {
provider_name = "kubernetes"
argument {
name = "host"
value = "my-host"
description = "The hostname (in form of URI) of the Kubernetes API."
}
argument {
name = "username"
value = "my-username"
}
argument {
name = "password"
value = "my-password"
sensitive = true
}
}
}
Argument Reference
account_id
- (Optional) The account that owns the object, specified as an ID.name
- (Required) The name of the Scalr provider configuration. This field is unique for the account.export_shell_variables
- (Optional) Export provider variables into the run environment. This option is available for built-in (Scalr, AWS, AzureRM, Google) providers only.environments
- (Optional) The list of environment identifiers that the provider configuration is shared to. Use["*"]
to share with all environments.scalr
- (Optional) Settings for the Scalr provider configuration. Exactly one of the following attributes must be set:scalr
,aws
,google
,azurerm
,custom
.
Thescalr
block supports the following:hostname
- (Optional) The Scalr hostname which should be used.token
- (Optional) The Scalr token which should be used.
aws
- (Optional) Settings for the aws provider configuration. Exactly one of the following attributes must be set:scalr
,aws
,google
,azurerm
,custom
.
Theaws
block supports the following:account_type
- (Required) The type of AWS account, available options:regular
,gov-cloud
,cn-cloud
.credentials_type
- (Required) The type of AWS credentials, available options:access_keys
,role_delegation
.trusted_entity_type
- (Optional) Trusted entity type, available options:aws_account
,aws_service
. This option is required withrole_delegation
credentials type.role_arn
- (Optional) Amazon Resource Name (ARN) of the IAM Role to assume. This option is required with therole_delegation
credentials type.external_id
- (Optional) External identifier to use when assuming the role. This option is required withrole_delegation
credentials type andaws_account
trusted entity type.secret_key
- (Optional) AWS secret key. This option is required withaccess_keys
credentials type.access_key
- (Optional) AWS access key. This option is required withaccess_keys
credentials type.
google
- (Optional) Settings for the google provider configuration. Exactly one of the following attributes must be set:scalr
,aws
,google
,azurerm
,custom
.
Thegoogle
block supports the following:credentials
- (Required) Service account key file in JSON format.project
- (Optional) The default project to manage resources in. If another project is specified on a resource, it will take precedence.
azurerm
- (Optional) Settings for the azurerm provider configuration. Exactly one of the following attributes must be set:scalr
,aws
,google
,azurerm
,custom
.
Theazurerm
block supports the following:client_id
- (Required) The Client ID that should be used.client_secret
- (Required) The Client Secret that should be used.tenant_id
- (Required) The Tenant ID that should be used.subscription_id
- (Optional) The Subscription ID that should be used. If skipped, it must be set as a shell variable in the workspace or as a part of the source configuration.
custom
- (Optional) Settings for the provider configuration that does not have scalr support as a built-in provider. Exactly one of the following attributes must be set:scalr
,aws
,google
,azurerm
,custom
.
Thecustom
block supports the following:provider_name
- (Required) The name of a Terraform provider.argument
- (Required) The provider configuration argument. Multiple instances are allowed per block.
Theargument
block supports the following:name
- (Required) The name of the provider configuration argument.value
- (Optional) The value of the provider configuration argument.sensitive
- (Optional) Set (true/false) to configure as sensitive. Defaultfalse
.description
- (Optional) The description of the provider configuration argument.
Attribute Reference
All arguments plus:
id
- The ID of the provider configuration, in the formatpcfg-xxxxxxxx
.
Import
To import provider configurations use the ID as the import ID. For example:
terraform import scalr_provider_configuration.example pcfg-123456789
Updated about 1 month ago