terraform-provider-bigip icon indicating copy to clipboard operation
terraform-provider-bigip copied to clipboard

Published 20 hours ago verified publisher icon F5Networks

Auto decryption encrypted private key not supported

Open jkacou opened this issue 3 years ago • 0 comments

Is your feature request related to a problem? Please describe.

Currently, use the provider to push certificate private key to bigip force to use a plain text version of the key (witch is not allowed in my company for now) when we want to have the clear private key rather than the encrypted version There is no way to add the password key so the bigip_ssl_key resource could automatically decrypt it before push

Describe the solution you'd like

Currently the bigip_ssl_key resource is: resource "bigip_ssl_key" "test-key" { name = "serverkey.key" content = file("serverkey.key") partition = "Common" } And it wild be really cool to have an optional field for the key password like resource "bigip_ssl_key" "test-key" { name = "serverkey.key" content = file("serverkey.key") encryption_key = "very_secret_password" partition = "Common" }

Describe alternatives you've considered

For now we have to do it through local-exec, not really good actually in a security view

jkacou avatar Sep 01 '22 13:09 jkacou