-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathsecrets.tf
67 lines (59 loc) · 3.76 KB
/
secrets.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
# --- ROCKITPLAY_CERT_OCID
data "oci_vault_secrets" "cert_ocid_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_CERT_OCID.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "cert_ocid_secretbundle" { secret_id = data.oci_vault_secrets.cert_ocid_secret.secrets.0.id }
# --- ROCKITPLAY_CERT_DOMAINNAME
data "oci_vault_secrets" "cert_domainname_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_CERT_DOMAINNAME.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "cert_domainname_secretbundle" { secret_id = data.oci_vault_secrets.cert_domainname_secret.secrets.0.id }
# --- ROCKITPLAY_LOADER_IMAGE_OCID
data "oci_vault_secrets" "rockitplay_loader_img_ocid_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_LOADER_IMAGE_OCID.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "rockitplay_loader_img_ocid_secretbundle" { secret_id = data.oci_vault_secrets.rockitplay_loader_img_ocid_secret.secrets.0.id }
# --- ROCKITPLAY_MONGODBATLAS_ORGID
data "oci_vault_secrets" "mongodbatlas_orgid_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_MONGODBATLAS_ORGID.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "mongodbatlas_orgid_secretbundle" { secret_id = data.oci_vault_secrets.mongodbatlas_orgid_secret.secrets.0.id }
# --- ROCKITPLAY_MONGODBATLAS_ADMIN_PUBKEY
data "oci_vault_secrets" "mongodbatlas_admin_pubkey_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_MONGODBATLAS_ADMIN_PUBKEY.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "mongodbatlas_admin_pubkey_secretbundle" { secret_id = data.oci_vault_secrets.mongodbatlas_admin_pubkey_secret.secrets.0.id }
# --- ROCKITPLAY_MONGODBATLAS_ADMIN_PRIVKEY
data "oci_vault_secrets" "mongodbatlas_admin_privkey_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_MONGODBATLAS_ADMIN_PRIVKEY.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "mongodbatlas_admin_privkey_secretbundle" { secret_id = data.oci_vault_secrets.mongodbatlas_admin_privkey_secret.secrets.0.id }
# --- ROCKITPLAY_SLACK_TOKEN
data "oci_vault_secrets" "slack_token_secret" {
vault_id = local.vault_ocid
compartment_id = local.rockitplay_comp_ocid
name = "ROCKITPLAY_SLACK_TOKEN.${local.baseenv_id}"
}
data "oci_secrets_secretbundle" "slack_token_secretbundle" { secret_id = data.oci_vault_secrets.slack_token_secret.secrets.0.id }
locals {
with_cert = local.cert_ocid == "n/a" ? false : true
cert_ocid = base64decode (data.oci_secrets_secretbundle.cert_ocid_secretbundle.secret_bundle_content.0.content)
cert_domainname = base64decode (data.oci_secrets_secretbundle.cert_domainname_secretbundle.secret_bundle_content.0.content)
rockitplay_loader_img_ocid = base64decode (data.oci_secrets_secretbundle.rockitplay_loader_img_ocid_secretbundle.secret_bundle_content.0.content)
mongodbatlas_orgid = base64decode (data.oci_secrets_secretbundle.mongodbatlas_orgid_secretbundle.secret_bundle_content.0.content)
mongodbatlas_admin_pubkey = base64decode (data.oci_secrets_secretbundle.mongodbatlas_admin_pubkey_secretbundle.secret_bundle_content.0.content)
mongodbatlas_admin_privkey = base64decode (data.oci_secrets_secretbundle.mongodbatlas_admin_privkey_secretbundle.secret_bundle_content.0.content)
slack_token = base64decode (data.oci_secrets_secretbundle.slack_token_secretbundle.secret_bundle_content.0.content)
}