search

iSchluff / terraform-provider-keepass

Terraform provider for reading secrets from keepass databases
Apache License 2.0
4 stars 1 forks source link

add support for key file and set schema fields to sensitive #2

Closed vandot closed 1 year ago

vandot commented 1 year ago

Added support for key file. If key is not specified it will still use only password to open database. Changed HOSTNAME inside Makefile to registry.terraform.io because Terraform v1.1.4 searched that path for plugins. Set all With sensitive = true terraform will never output values in clear text. Output example:

╷
│ Error: Output refers to sensitive values
│ 
│   on main.tf line 5:
│    5: output "password" {
│ 
│ To reduce the risk of accidentally exporting sensitive data that was intended to be only internal, Terraform requires that any
│ root module output containing sensitive data be explicitly marked as sensitive, to confirm your intent.
│ 
│ If you do intend to export this data, annotate the output value as sensitive by adding the following argument:
│     sensitive = true
╵

Annotating output as sensitive enables this output:

Changes to Outputs:
  + password = (sensitive value)
iSchluff commented 1 year ago

Thank you, looks good to me. Thanks also for setting the outputs to sensitive, still had that on my todo list.