feat: Add support for creating KMS key for cluster secret encryption (#2121)

* feat: Add support for creating KMS key for cluster secret encryption * fix: Update naming scheme to include `kms_`
2026-03-23 18:01:04 +01:00 · 2022-06-28 10:55:39 -04:00
parent e0f5995a8b
commit 75acb09ec5
14 changed files with 245 additions and 21 deletions
--- a/outputs.tf
+++ b/outputs.tf
@@ -47,6 +47,25 @@ output "cluster_primary_security_group_id" {
  value       = try(aws_eks_cluster.this[0].vpc_config[0].cluster_security_group_id, "")
 }

+################################################################################
+# KMS Key
+################################################################################
+
+output "kms_key_arn" {
+  description = "The Amazon Resource Name (ARN) of the key"
+  value       = module.kms.key_arn
+}
+
+output "kms_key_id" {
+  description = "The globally unique identifier for the key"
+  value       = module.kms.key_id
+}
+
+output "kms_key_policy" {
+  description = "The IAM resource policy set on the key"
+  value       = module.kms.key_policy
+}
+
 ################################################################################
 # Cluster Security Group
 ################################################################################