» vault_token
Provides a resource to generate a vault token with its options. The token renewing is supported through optional arguments.
» Example Usage
resource "vault_token" "example" {
role_name = "app"
policies = ["policy1", "policy2"]
renewable = true
ttl = "24h"
renew_min_lease = 43200
renew_increment = 86400
}
» Argument Reference
The following arguments are supported:
-
role_name
- (Optional) The token role name -
policies
- (Optional) List of policies to attach to this token -
no_parent
- (Optional) Flag to create a token without parent -
no_default_policy
- (Optional) Flag to not attach the default policy to this token -
renewable
- (Optional) Flag to allow to renew this token -
ttl
- (Optional) The TTL period of this token -
explicit_max_ttl
- (Optional) The explicit max TTL of this token -
display_name
- (Optional) String containing the token display name -
num_uses
- (Optional) The number of allowed uses of this token -
period
- (Optional) The period of this token -
renew_min_lease
- (Optional) The minimal lease to renew this token -
renew_increment
- (Optional) The renew increment
» Attributes Reference
-
lease_duration
- String containing the token lease duration if present in state file -
lease_started
- String containing the token lease started time if present in state file -
client_token
- String containing the client token if stored in present file
» Import
Tokens can be imported using its id
as accessor id, e.g.
$ terraform import vault_token.example <accessor_id>