Skip to content

Latest commit

 

History

History
 
 

fscloud

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 
version.tf
version.tf
 
 

README.md

Profile for IBM Cloud Framework for Financial Services

This code is a version of the parent root module that includes a default configuration that complies with the relevant controls from the IBM Cloud Framework for Financial Services. See the Solution for IBM Cloud Framework for Financial Services for logic that uses this module. The profile assumes you are deploying into an account that complies with the framework.

The default values in this profile were scanned by IBM Code Risk Analyzer (CRA) for compliance with the IBM Cloud Framework for Financial Services profile that is specified by the IBM Security and Compliance Center. The scan passed for all applicable rules.

Before you begin

Before you run the module, configure an authorization policy to allow the Event Streams service to access the key management service instance with the reader role. For more information, see About KMS encryption in the main readme file.

Requirements

Name Version
terraform >= 1.3.0
ibm >= 1.65.0, <2.0.0

Modules

Name Source Version
event_streams ../../ n/a

Resources

No resources.

Inputs

Name Description Type Default Required
cbr_rules The list of context-based restriction rules to create. 
list(object({
    description = string
    account_id  = string
    rule_contexts = list(object({
      attributes = optional(list(object({
        name  = string
        value = string
    }))) }))
    enforcement_mode = string
  }))
 [] no
es_name The name of the Event Streams instance. string n/a yes
kms_key_crn The root key CRN of the key management service (Key Protect or Hyper Protect Crypto Services) to use to encrypt the payload data. string n/a yes
region The region where the Event Streams are created. string "us-south" no
resource_group_id The resource group ID where the Event Streams instance is created. string n/a yes
schemas The list of schema objects. Include the schema_id and the type and name of the schema in the schema object. 
list(object(
    {
      schema_id = string
      schema = object({
        type = string
        name = string
        fields = optional(list(object({
          name = string
          type = string
        })))
      })
    }
  ))
 [] no
tags The list of tags associated with the Event Steams instance. list(string) [] no
topics The list of topics to apply to resources. Only one topic is allowed for Lite plan instances. 
list(object(
    {
      name       = string
      partitions = number
      config     = object({})
    }
  ))
 [] no

Outputs

Name Description
crn Event Streams instance crn
guid Event Streams instance guid
id Event Streams instance crn
kafka_broker_version The Kafka version
kafka_brokers_sasl (Array of Strings) Kafka brokers use for interacting with Kafka native API
kafka_http_url The API endpoint to interact with Event Streams REST API