terraform-provider-oci icon indicating copy to clipboard operation
terraform-provider-oci copied to clipboard

Published 20 hours ago verified publisher icon oracle

Unable to specify KMS key ID for Boot volume in core_instance_configuration

Open kostasns opened this issue 3 years ago • 5 comments

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

core_instance resource has an ability to specify kms_key_id for boot_volume

source_details {
        #Required
        source_id = oci_core_image.test_image.id
        source_type = "image"

        #Optional
        boot_volume_size_in_gbs = var.instance_source_details_boot_volume_size_in_gbs
        kms_key_id = oci_kms_key.test_key.id
    }

core_instance_configuration does not have this option.

source_details {
  #Required
  source_type = var.instance_configuration_instance_details_launch_details_source_details_source_type

   #Optional
   boot_volume_id = oci_core_boot_volume.test_boot_volume.id
   boot_volume_size_in_gbs = var.instance_configuration_instance_details_launch_details_source_details_boot_volume_size_in_gbs
    image_id = oci_core_image.test_image.id
}

Therefore we are not able to create instance pools with instances encrypted using managed key.

New or Affected Resource(s)

core_instance_configuration

Potential Terraform Configuration

source_details {
  #Required
  source_type = var.instance_configuration_instance_details_launch_details_source_details_source_type

   #Optional
   boot_volume_id = oci_core_boot_volume.test_boot_volume.id
   boot_volume_size_in_gbs = var.instance_configuration_instance_details_launch_details_source_details_boot_volume_size_in_gbs
    image_id = oci_core_image.test_image.id
  kms_key_id = oci_kms_key.test_key.id
}

References

https://registry.terraform.io/providers/hashicorp/oci/latest/docs/resources/core_instance https://registry.terraform.io/providers/hashicorp/oci/latest/docs/resources/core_instance_configuration

kostasns avatar Feb 22 '21 14:02 kostasns

Thank you for your suggestion. We have opened a feature request with the KMS team.

zexinwanoci avatar Feb 22 '21 21:02 zexinwanoci

any update on this ?

kostasns avatar Mar 31 '21 09:03 kostasns

Update from Oracle Support

This will be released, but it will be a few months (currently targeted for end of may) until it is ready for release.

kostasns avatar Apr 08 '21 06:04 kostasns

any updates on this?

yousifd avatar Jan 04 '22 15:01 yousifd

Any updates on this @zexinwanoci ?

yousifd avatar Aug 10 '22 05:08 yousifd