security/keyvault_access_policies¶
Overview¶
This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.
Dependency diagram (Mermaid)¶
graph TD
module.azuread_apps["module.azuread_apps"]
module.azuread_group["module.azuread_group"]
module.azuread_service_principals["module.azuread_service_principals"]
module.diagnostic_storage_accounts["module.diagnostic_storage_accounts"]
module.logged_in_aad_app["module.logged_in_aad_app"]
module.logged_in_user["module.logged_in_user"]
module.managed_identity["module.managed_identity"]
module.mssql_managed_instance["module.mssql_managed_instance"]
module.mssql_managed_instances_secondary["module.mssql_managed_instances_secondary"]
module.object_id["module.object_id"]
module.storage_accounts["module.storage_accounts"]
Module Reference¶
Category: security
Path: modules/security/keyvault_access_policies
Inputs¶
| Name | Description | Type | Required | Default | Validation |
|---|---|---|---|---|---|
keyvaults |
any |
no | {} |
- | |
keyvault_key |
any |
no | - |
- | |
keyvault_id |
any |
no | - |
- | |
access_policies |
any |
yes | - |
A maximun of 16 access policies can be set. | |
client_config |
Client configuration object (see module README.md). | any |
yes | - |
- |
azuread_groups |
any |
no | {} |
- | |
azuread_apps |
any |
no | {} |
- | |
resources |
any |
no | {} |
- |
Outputs¶
No outputs defined.
Sources¶
modules/security/keyvault_access_policies/policies.tfmodules/security/keyvault_access_policies/variables.tf