github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/storage/AVD-GCP-0066/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/storage/AVD-GCP-0066/Terraform.md (about)

     1  
     2  Encrypt Cloud Storage buckets using customer-managed keys.
     3  
     4  ```hcl
     5   resource "google_storage_bucket" "default" {
     6     name                        = "my-default-bucket"
     7     location                    = "EU"
     8     force_destroy               = true
     9     uniform_bucket_level_access = true
    10  
    11     encryption {
    12       default_kms_key_name = "projects/my-pet-project/locations/us-east1/keyRings/my-key-ring/cryptoKeys/my-key"
    13     }
    14   }
    15   
    16  ```
    17  
    18  #### Remediation Links
    19   - https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/storage_bucket#encryption
    20