» alicloud_ram_access_key

Provides a RAM User access key resource.

» Example Usage

# Create a new RAM access key for user.
resource "alicloud_ram_user" "user" {
  name         = "user_test"
  display_name = "user_display_name"
  mobile       = "86-18688888888"
  email        = "hello.uuu@aaa.com"
  comments     = "yoyoyo"
  force        = true

resource "alicloud_ram_access_key" "ak" {
  user_name   = "${alicloud_ram_user.user.name}"
  secret_file = "/xxx/xxx/xxx.txt"

» Argument Reference

The following arguments are supported:

  • user_name - (Optional, ForceNew) Name of the RAM user. This name can have a string of 1 to 64 characters, must contain only alphanumeric characters or hyphens, such as "-",".","_", and must not begin with a hyphen.
  • secret_file - (Optional, ForceNew) The name of file that can save access key id and access key secret. Strongly suggest you to specified it when you creating access key, otherwise, you wouldn't get its secret ever.
  • status - (Optional) Status of access key. It must be Active or Inactive. Default value is Active.
  • pgp_key - (Optional, Available in 1.47.0+) Either a base-64 encoded PGP public key, or a keybase username in the form keybase:some_person_that_exists

» Attributes Reference

The following attributes are exported:

  • id - The access key ID.
  • status - The access key status.
  • key_fingerprint - The fingerprint of the PGP key used to encrypt the secret
  • encrypted_secret - The encrypted secret, base64 encoded. ~> NOTE: The encrypted secret may be decrypted using the command line, for example: terraform output encrypted_secret | base64 --decode | keybase pgp decrypt.