terraform-provider-tls Provide a better way to regenerate private keys other than manually tainting state.

Provide a better way to regenerate private keys other than manually tainting state.

Open lavahot opened this issue 3 months ago • 0 comments

Terraform CLI and Provider Versions

Terraform v1.6.4 on darwin_arm64

provider registry.terraform.io/hashicorp/tls v4.0.5

Use Cases or Problem Statement

According to the documentation, the only way to regenerate a private key resource is to manually taint the resource in state. This can add significant ongoing friction to maintaining a deployment (or several deployments) when secrets rotate.

Proposal

Add some method of rotating the key that relies on changing some derived value in the resource. Maybe something like #395. Or a triggers object like in time_sleep.

How much impact is this issue causing?

Medium

Additional Information

No response

Code of Conduct

[X] I agree to follow this project's Code of Conduct

May 20 '24 18:05 lavahot

terraform-provider-tls terraform-provider-tls copied to clipboard

Provide a better way to regenerate private keys other than manually tainting state.

Terraform CLI and Provider Versions

Use Cases or Problem Statement

Proposal

How much impact is this issue causing?

Additional Information

Code of Conduct

terraform-provider-tls
terraform-provider-tls copied to clipboard