Module: kms-key
Terraform module to provision a KMS key with alias.
Can be used with chamber for managing secrets by storing them in Amazon EC2 Systems Manager Parameter Store.
- https://aws.amazon.com/systems-manager/features
- https://aws.amazon.com/blogs/mt/the-right-way-to-store-secrets-using-parameter-store
Usage
module "kms_key" {
source = "cloudposse/kms-key/aws"
# Cloud Posse recommends pinning every module to a specific version
# version = "x.x.x"
namespace = "eg"
stage = "test"
name = "chamber"
description = "KMS key for chamber"
deletion_window_in_days = 10
enable_key_rotation = true
alias = "alias/parameter_store_key"
}