terraform-provider-grafana icon indicating copy to clipboard operation
terraform-provider-grafana copied to clipboard

Published 20 hours ago verified publisher icon grafana

Configure provider using inline TLS instead of file path

Open jerome-quere opened this issue 4 years ago • 0 comments

Hello,

I am building a terraform project where TLS certificates are generated by terraform resources. It would be great if we can configure the provider with inline TLS info instead of file path.

Exemple:

resource "vault_pki_secret_backend_cert" "grafana" {
  backend               = "internal_pki"
  common_name    = "grafana"
  auto_renew            = true
}


provider "grafana" {
  url      = "https://grafana.prd.internal.bodyguard.ai/"
  auth     = local.grafana_api_key
  ca_cert  = vault_pki_secret_backend_cert.grafana.issuing_ca
  tls_cert = vault_pki_secret_backend_cert.grafana.issuing_ca
  tls_key  = vault_pki_secret_backend_cert.grafana.private_key
}

Today I am using local_file provider to make it work but this requires me to first run a

$> terraform apply -target=local_file.tmp

to make sure files are written on disk before running a full apply.

To avoid breaking change in the provider we could either try to detect PEM format in the provider config or us separate config key (something like ca_cert_inline ?)

jerome-quere avatar Oct 04 '21 14:10 jerome-quere