Variable type question

deathscythe272 · June 24, 2022, 4:13pm

I am new to terraform and trying to take advantage of the code in the below github my question is on the variables.tf at this link on line 89-96. See example below for the code snipit. I am trying to figure out how to populate this variable with my KMS key arn and the required resources. The intent is to encrypt the eks cluster with the KMS key

github.com

terraform-aws-modules/terraform-aws-eks/blob/master/variables.tf

variable "create" {
  description = "Controls if EKS resources should be created (affects nearly all resources)"
  type        = bool
  default     = true
}

variable "tags" {
  description = "A map of tags to add to all resources"
  type        = map(string)
  default     = {}
}

variable "prefix_separator" {
  description = "The separator to use between the prefix and the generated timestamp for resource names"
  type        = string
  default     = "-"
}

################################################################################
# Cluster

This file has been truncated. show original

variable “cluster_encryption_config” {
description = “Configuration block with encryption configuration for the cluster”
type = list(object({
provider_key_arn = string
resources = list(string)
}))
default =
}

alisdair · June 24, 2022, 6:33pm

I’d read this variable type as “a list of objects which have two attributes: a provider_key_arn string, and a list of resources”.

One way to construct a value to pass in here would be as follows:

cluster_encryption_config = [
  {
    provider_key_arn = var.aws_kms_key_arn,
    resources = ["secrets"],
  }
]

Does this answer your question?

deathscythe272 · June 28, 2022, 2:59pm

Thanks for reaching back out I really appreciate your assistances the way you are addressing that would I change my variable type to something else and I guess how would I add that into my current syntax ?

 variable "cluster_encryption_config" {
  type = list(object({
    provider_key_arn = string
    resources        = list(string)
  }))
  default = []
}

alisdair · June 28, 2022, 3:35pm

What you linked to is the GitHub repo of a public registry module, which I assumed your Terraform configuration was using. Is that the case? If so, your module call should include a reference to your KMS key as in my previous reply.

For the code from my previous reply, the aws_kms_key_arn variable would be a string type.

If you can include some of your own Terraform configuration in a future reply, it would make it easier for someone to suggest changes.

Topic		Replies	Views
How to reference resources in the default value of a Terraform variable(type: tuple(object))? Terraform	1	278	March 5, 2023
Variable default value interpolation from locals Terraform	2	3719	February 24, 2021
Multi line string variable Terraform	2	3040	September 12, 2022
Help create terraform module use Kubernetes provider Kubernetes	2	564	March 16, 2023
Newbie question about assigning maps to variable Terraform	1	497	February 26, 2022

Variable type question

Related topics