Skip to content

Commit

Permalink
Merge pull request #22 from remerge/remove-google-secrets
Browse files Browse the repository at this point in the history 
Remove obsolete Google Secret Manager secrets
  • Loading branch information
@hollow
hollow committed Dec 13, 2023
2 parents 126a4e1 + 72a7d7c commit 78ec463
Show file tree
Hide file tree
Showing 6 changed files with 0 additions and 72 deletions.
22 changes: 0 additions & 22 deletions google/redis/main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,25 +37,3 @@ module "netbox-vm" {
interface = "internal"
ip_address = google_redis_instance.main.host
}

resource "google_secret_manager_secret" "auth" {
secret_id = "redis-auth-${var.name}"
replication {
auto {}
}
}

resource "google_secret_manager_secret_version" "auth" {
secret = google_secret_manager_secret.auth.name
secret_data = google_redis_instance.main.auth_string
}

resource "google_secret_manager_secret_iam_member" "auth" {
secret_id = google_secret_manager_secret.auth.id
role = "roles/secretmanager.secretAccessor"
member = "serviceAccount:${data.google_compute_default_service_account.default.email}"
}

data "google_compute_default_service_account" "default" {
project = var.project
}
13 changes: 0 additions & 13 deletions google/sql/database/main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,16 +16,3 @@ resource "google_sql_user" "main" {
name = var.name
password = random_password.user.result
}

resource "google_secret_manager_secret" "user" {
project = var.project
secret_id = "sql-${var.instance}-user-${var.name}"
replication {
auto {}
}
}

resource "google_secret_manager_secret_version" "user" {
secret = google_secret_manager_secret.user.name
secret_data = random_password.user.result
}
4 changes: 0 additions & 4 deletions google/sql/database/outputs.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,3 @@ output "user" {
output "password" {
value = random_password.user.result
}

output "secret" {
value = google_secret_manager_secret.user
}
24 changes: 0 additions & 24 deletions sendgrid/main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,27 +8,3 @@ resource "sendgrid_api_key" "main" {
"sender_verification_legacy",
]
}

resource "google_secret_manager_secret" "key" {
project = var.project
secret_id = "sendgrid-key-${var.name}"
replication {
auto {}
}
}

resource "google_secret_manager_secret_version" "key" {
secret = google_secret_manager_secret.key.name
secret_data = sendgrid_api_key.main.api_key
}

resource "google_secret_manager_secret_iam_member" "key" {
project = var.project
secret_id = google_secret_manager_secret.key.id
role = "roles/secretmanager.secretAccessor"
member = "serviceAccount:${data.google_compute_default_service_account.default.email}"
}

data "google_compute_default_service_account" "default" {
project = var.project
}
4 changes: 0 additions & 4 deletions sendgrid/outputs.tf
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,3 @@
output "key" {
value = sendgrid_api_key.main.api_key
}

output "secret" {
value = google_secret_manager_secret.key
}
5 changes: 0 additions & 5 deletions sendgrid/versions.tf
View file
Original file line number Diff line number Diff line change
@@ -1,10 +1,5 @@
terraform {
required_providers {
# https://registry.terraform.io/providers/hashicorp/google/latest
google = {
source = "hashicorp/google"
version = "~> 5.4"
}
# https://registry.terraform.io/providers/Trois-Six/sendgrid/latest
sendgrid = {
source = "Trois-Six/sendgrid"
Expand Down

0 comments on commit 78ec463

Please sign in to comment.