| 123456789101112131415161718192021222324252627 |
- data "template_file" "kms_ebs_key_policy" {
- template = "${file("policies/kms_ebs_key_policy.json.tpl")}"
- vars = {
- account = "${data.aws_caller_identity.current.account_id}"
- }
- }
- resource "aws_kms_key" "splunk_ebs_key" {
- description = "This key is used to encrypt the EBS drives for splunk systems."
- deletion_window_in_days = 10
- policy = "${data.template_file.kms_ebs_key_policy.rendered}"
- }
- resource "aws_kms_alias" "splunk_ebs_key" {
- name = "alias/splunk_standalone_ebs"
- target_key_id = "${aws_kms_key.splunk_ebs_key.key_id}"
- }
- resource "aws_kms_key" "splunk_s3_key" {
- description = "This key is used to encrypt the S3 SmartStore backend for splunk systems."
- deletion_window_in_days = 10
- }
- resource "aws_kms_alias" "splunk_s3_key" {
- name = "alias/splunk_standalone_s3"
- target_key_id = "${aws_kms_key.splunk_s3_key.key_id}"
- }
|
