Skip to content

Latest commit

History

History

iam-oidc-identity-provider

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
main.tf
main.tf
outputs.tf
outputs.tf
resource-group.tf
resource-group.tf
variables.tf
variables.tf
versions.tf
versions.tf

README.md

iam-oidc-identity-provider

This module creates following resources.

  • aws_iam_openid_connect_provider

Requirements

Name Version
terraform >= 1.5
aws >= 4.36
tls >= 4.0

Providers

Name Version
aws 5.50.0
tls 4.0.5

Modules

Name Source Version
resource_group tedilabs/misc/aws//modules/resource-group ~> 0.10.0

Resources

Name Type
aws_iam_openid_connect_provider.this resource
tls_certificate.this data source

Inputs

Name Description Type Default Required
url (Required) The secure OpenID Connect URL for authentication requests. Correspond to the iss claim. Maximum 255 characters. URL must begin with https://. string n/a yes
audiences (Optional) A list of audiences (also known as client IDs) for the IAM OIDC provider. When a mobile or web app registers with an OpenID Connect provider, they establish a value that identifies the application. This is the value that's sent as the client_id parameter on OAuth requests. Defaults to STS service(sts.amazonaws.com) if not values are provided. set(string) 
[
  "sts.amazonaws.com"
]
 no
auto_thumbprint_enabled (Optional) Whether to automatically calculate thumbprint of the server certificate. bool true no
module_tags_enabled (Optional) Whether to create AWS Resource Tags for the module informations. bool true no
resource_group_description (Optional) The description of Resource Group. string "Managed by Terraform." no
resource_group_enabled (Optional) Whether to create Resource Group to find and group AWS resources which are created by this module. bool true no
resource_group_name (Optional) The name of Resource Group. A Resource Group name can have a maximum of 127 characters, including letters, numbers, hyphens, dots, and underscores. The name cannot start with AWS or aws. string "" no
tags (Optional) A map of tags to add to all resources. map(string) {} no
thumbprints (Optional) A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider's server certificate(s). list(string) [] no

Outputs

Name Description
arn The ARN assigned by AWS for this provider.
audiences A list of audiences (also known as client IDs) for the IAM OIDC provider.
id The ID of this provider.
thumbprints A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider's server certificate(s).
url The URL of the identity provider.
urn The URN of the identity provider.