unkin/terraform-vault
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: unkin:fee61c3eb5f912fccf222e2ee63878b11c19fc32
Branches Tags
unkin:master
..
compare: unkin:8fd89135546a3b8b406a9f0b836f543e118590b9
Branches Tags
unkin:master

No commits in common. "fee61c3eb5f912fccf222e2ee63878b11c19fc32" and "8fd89135546a3b8b406a9f0b836f543e118590b9" have entirely different histories.
fee61c3eb5 ... 8fd8913554

4 changed files with 40 additions and 24 deletions
Show Stats Expand all files Collapse all files

6
auth_approle_certmanager.tf
View File

@ -5,11 +5,15 @@ resource "vault_approle_auth_backend_role" "certmanager" {
token_ttl = 30 token_ttl = 30
token_max_ttl = 30 token_max_ttl = 30
token_bound_cidrs = [ token_bound_cidrs = [
"198.18.17.3/32",
"198.18.13.32/32",
"198.18.13.33/32",
"198.18.13.34/32",
"198.18.13.46/32",
"198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net "198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net
"198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net "198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net
"198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net "198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net
"198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net "198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net
"198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net "198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net
"198.18.29.239/32", # ausyd1nxvm2097.main.unkin.net
] ]
} }

6
auth_approle_puppetapi.tf
View File

@ -5,11 +5,15 @@ resource "vault_approle_auth_backend_role" "puppetapi" {
token_ttl = 30 token_ttl = 30
token_max_ttl = 30 token_max_ttl = 30
token_bound_cidrs = [ token_bound_cidrs = [
"198.18.17.3/32",
"198.18.13.32/32",
"198.18.13.33/32",
"198.18.13.34/32",
"198.18.13.46/32",
"198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net "198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net
"198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net "198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net
"198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net "198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net
"198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net "198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net
"198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net "198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net
"198.18.29.239/32", # ausyd1nxvm2097.main.unkin.net
] ]
} }

6
auth_approle_sshsign-host-role.tf
View File

@ -5,11 +5,15 @@ resource "vault_approle_auth_backend_role" "sshsign-host-role" {
token_ttl = 30 token_ttl = 30
token_max_ttl = 30 token_max_ttl = 30
token_bound_cidrs = [ token_bound_cidrs = [
"198.18.17.3/32",
"198.18.13.32/32",
"198.18.13.33/32",
"198.18.13.34/32",
"198.18.13.46/32",
"198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net "198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net
"198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net "198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net
"198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net "198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net
"198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net "198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net
"198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net "198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net
"198.18.29.239/32", # ausyd1nxvm2097.main.unkin.net
] ]
} }

6
auth_approle_sshsigner.tf
View File

@ -8,11 +8,15 @@ resource "vault_approle_auth_backend_role" "sshsigner" {
token_ttl = 30 token_ttl = 30
token_max_ttl = 30 token_max_ttl = 30
token_bound_cidrs = [ token_bound_cidrs = [
"198.18.17.3/32",
"198.18.13.32/32",
"198.18.13.33/32",
"198.18.13.34/32",
"198.18.13.46/32",
"198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net "198.18.25.5/32", # ausyd1nxvm2052.main.unkin.net
"198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net "198.18.26.3/32", # ausyd1nxvm2053.main.unkin.net
"198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net "198.18.27.89/32", # ausyd1nxvm2054.main.unkin.net
"198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net "198.18.28.8/32", # ausyd1nxvm2055.main.unkin.net
"198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net "198.18.29.33/32", # ausyd1nxvm2056.main.unkin.net
"198.18.29.239/32", # ausyd1nxvm2097.main.unkin.net
] ]
} }