| Name | Version |
|---|---|
| terraform | >= 1.2.9 |
| >=4.47.0, <5.0.0 | |
| helm | >=2.6.0, <3.0.0 |
| kubernetes | >=2.14.0, <3.0.0 |
| Name | Version |
|---|---|
| kubernetes | >=2.14.0, <3.0.0 |
| Name | Source | Version |
|---|---|---|
| gcs_buckets | terraform-google-modules/cloud-storage/google | 3.4.1 |
| kms | terraform-google-modules/kms/google | 2.2.1 |
| service_accounts | terraform-google-modules/service-accounts/google | 4.2.0 |
| Name | Type |
|---|---|
| kubernetes_cron_job_v1.backup | resource |
| kubernetes_service_account_v1.vault_backup | resource |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| key_ring_name | Name of the Keyring to create. | string |
n/a | yes |
| kms_location | Location of the KMS key ring. | string |
n/a | yes |
| project_id_gke | Project ID for GKE project | string |
n/a | yes |
| unseal_key_name | Name of the Vault unseal key | string |
n/a | yes |
| unseal_key_rotation_period | Rotation period of the Vault unseal key. Defaults to 6 months | string |
n/a | yes |
| vault_backup_gcs_retention_days | Duration in days to keep the vault backups in GCS | number |
15 |
no |
| vault_gcp_sa | GCP Service account that will be used by the Vault Server. Must exist | string |
n/a | yes |
| vault_namespace | Namespace used by Hashicorp vault | string |
n/a | yes |
| Name | Description |
|---|---|
| kms | n/a |
| kubernetes_service_account | n/a |
| vault_backup_gcp_sa_email | n/a |