Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- resource "aws_transfer_server" "sftp" {
- identity_provider_type = "SERVICE_MANAGED"
- logging_role = "${aws_iam_role.sftp.arn}"
- endpoint_type = "VPC_ENDPOINT"
- endpoint_details{
- vpc_endpoint_id = "<Endpoint-Id-from-other-terraform-resource>"
- }
- }
- resource "aws_iam_role" "sftp_user" {
- count = "${local.sftp_user_count}"
- name = "${local.app_env}-${lookup(local.sftp_user[count.index], "name")}-role"
- assume_role_policy = "${file("${path.module}/templates/assume-sftp.json")}"
- }
- resource "aws_transfer_ssh_key" "sftp_user" {
- server_id = "${aws_transfer_server.sftp.id}"
- count = "${local.sftp_user_count}"
- user_name = "${element(aws_transfer_user.sftp_user.*.user_name,count.index)}"
- body = "${tls_private_key.app1.public_key_openssh}"
- }
- resource "tls_private_key" "app1" {
- count = "${length(local.keylength)}"
- algorithm = "RSA"
- rsa_bits = 2048
- }
- resource "aws_key_pair" "app1" {
- key_name_prefix = "${local.app_env}-${local.app_parent}-${local.app_name}-"
- public_key = "${tls_private_key.app1.public_key_openssh}"
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement