Inputs

The following input variables are supported:

admin_groups

Description: Groups that should have read and write access to this Vault

Type: list(string)

Default: []

client_id

Description: The client id for the OIDC authentication

Type: string

Default: n/a

client_secret

Description: The client secret for the OIDC authentication

Type: string

Default: n/a

oidc_discovery_url

Description: The discover url for OIDC authentication

Type: string

Default: n/a

oidc_issuer

Description: The bound issuer for OIDC authentication to Vault

Type: string

Default: n/a

oidc_redirect_uris

Description: The allowed redirect URIs for OIDC authentication

Type: list(string)

Default: n/a

reader_groups

Description: Groups that should have read-only access to this Vault

Type: list(string)

Default: []

restricted_reader_groups

Description: Groups that should have restricted read-only access to this Vault

Type: list(string)

Default: []

superuser_groups

Description: Groups that should have superuser access to this Vault

Type: list(string)

Default: []

token_lifetime_hours

Description: Number of hours before generated tokens expire

Type: number

Default: 12

Outputs

No outputs.

Providers

The following providers are needed by this module:

• vault (4.8.0)