github.com/anth0d/nomad@v0.0.0-20221214183521-ae3a0a2cad06/e2e/terraform/tls_ca.tf

github.com/anth0d/nomad@v0.0.0-20221214183521-ae3a0a2cad06/e2e/terraform/tls_ca.tf (about)

     1  # tls_ca.tf defines the certificate authority we use for mTLS
     2  
     3  resource "tls_private_key" "ca" {
     4    algorithm   = "ECDSA"
     5    ecdsa_curve = "P384"
     6  }
     7  
     8  resource "tls_self_signed_cert" "ca" {
     9    private_key_pem = tls_private_key.ca.private_key_pem
    10  
    11    subject {
    12      common_name  = "${local.random_name} Nomad E2E Cluster"
    13      organization = local.random_name
    14    }
    15  
    16    validity_period_hours = 720
    17  
    18    is_ca_certificate = true
    19    allowed_uses      = ["cert_signing"]
    20  }
    21  
    22  resource "local_file" "ca_key" {
    23    filename = "keys/tls_ca.key"
    24    content  = tls_private_key.ca.private_key_pem
    25  }
    26  
    27  resource "local_file" "ca_cert" {
    28    filename = "keys/tls_ca.crt"
    29    content  = tls_self_signed_cert.ca.cert_pem
    30  }