Update Readme and rename variable
This commit is contained in:
parent
476d2c79e9
commit
dc01db0426
|
@ -177,6 +177,7 @@ module "project-host" {
|
|||
| *prefix* | Prefix used to generate project id and name. | <code title="">string</code> | | <code title="">null</code> |
|
||||
| *project_create* | Create project. When set to false, uses a data source to reference existing project. | <code title="">bool</code> | | <code title="">true</code> |
|
||||
| *service_config* | Configure service API activation. | <code title="object({ disable_on_destroy = bool disable_dependent_services = bool })">object({...})</code> | | <code title="{ disable_on_destroy = true disable_dependent_services = true }">...</code> |
|
||||
| *service_encryption_key_ids* | Cloud KMS encryption key in {SERVICE => [KEY_URL]} format. | <code title="map(list(string))">map(list(string))</code> | | <code title="">{}</code> |
|
||||
| *service_perimeter_bridges* | Name of VPC-SC Bridge perimeters to add project into. Specify the name in the form of 'accessPolicies/ACCESS_POLICY_NAME/servicePerimeters/PERIMETER_NAME'. | <code title="list(string)">list(string)</code> | | <code title="">null</code> |
|
||||
| *service_perimeter_standard* | Name of VPC-SC Standard perimeter to add project into. Specify the name in the form of 'accessPolicies/ACCESS_POLICY_NAME/servicePerimeters/PERIMETER_NAME'. | <code title="">string</code> | | <code title="">null</code> |
|
||||
| *services* | Service APIs to enable. | <code title="list(string)">list(string)</code> | | <code title="">[]</code> |
|
||||
|
|
|
@ -65,7 +65,7 @@ locals {
|
|||
if sink.iam && sink.type == type
|
||||
}
|
||||
}
|
||||
service_encryption_key_ids_flatten = flatten([
|
||||
service_encryption_key_ids = flatten([
|
||||
for service in keys(var.service_encryption_key_ids) : [
|
||||
for key in var.service_encryption_key_ids[service] : {
|
||||
service = service
|
||||
|
@ -367,7 +367,7 @@ resource "google_access_context_manager_service_perimeter_resource" "service-per
|
|||
|
||||
resource "google_kms_crypto_key_iam_member" "crypto_key" {
|
||||
for_each = {
|
||||
for service_key in local.service_encryption_key_ids_flatten : "${service_key.service}.${service_key.key}" => service_key
|
||||
for service_key in local.service_encryption_key_ids : "${service_key.service}.${service_key.key}" => service_key
|
||||
}
|
||||
crypto_key_id = each.value.key
|
||||
role = "roles/cloudkms.cryptoKeyEncrypter"
|
||||
|
|
Loading…
Reference in New Issue