» openstack_keymanager_order_v1

Manages a V1 Barbican order resource within OpenStack.

» Example Usage

» Symmetric key order

resource "openstack_keymanager_order_v1" "order_1" {
  type                 = "key"
  meta                   {
    algorithm            = "aes"
    bit_length           = 256
    name                 = "mysecret"
    mode                 = "cbc"
  }
}

» Asymmetric key pair order

resource "openstack_keymanager_order_v1" "order_1" {
  type                 = "asymmetric"
  meta                   {
    algorithm            = "rsa"
    bit_length           = 4096
    name                 = "mysecret"
  }
}

» Argument Reference

The following arguments are supported:

  • region - (Optional) The region in which to obtain the V1 KeyManager client. A KeyManager client is needed to create a order. If omitted, the region argument of the provider is used. Changing this creates a new V1 order.

  • type - (Required) The type of key to be generated. Must be one of asymmetric, key.

  • meta - (Required) Dictionary containing the order metadata used to generate the order. The structure is described below.

The meta block supports:

  • algorithm - (Required) Algorithm to use for key generation.

  • bit_length - (Required) - Bit lenght of key to be generated.

  • expiration - (Optional) This is a UTC timestamp in ISO 8601 format YYYY-MM-DDTHH:MM:SSZ. If set, the secret will not be available after this time.

  • mode - (Optional) The mode to use for key generation.

  • name - (Optional) The name of the secret set by the user.

  • payload_content_type - (Optional) The media type for the content of the secrets payload. Must be one of text/plain, text/plain;charset=utf-8, text/plain; charset=utf-8, application/octet-stream, application/pkcs8.

» Attributes Reference

The following attributes are exported:

  • container_ref - The container reference / where to find the container.
  • created - The date the order was created.
  • creator_id - The creator of the order.
  • meta - See Argument Reference above.
  • order_ref - The order reference / where to find the order.
  • region - See Argument Reference above.
  • secret_ref - The secret reference / where to find the secret.
  • status - The status of the order.
  • sub_status - The sub status of the order.
  • sub_status_message - The sub status message of the order.
  • type - The type of the order.
  • updated - The date the order was last updated.

» Import

Orders can be imported using the order id (the last part of the order reference), e.g.:

$ terraform import openstack_keymanager_order_v1.order_1 0c6cd26a-c012-4d7b-8034-057c0f1c2953