Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide a better way to regenerate private keys other than manually tainting state. #520

Open
1 task done
lavahot opened this issue May 20, 2024 · 0 comments
Open
1 task done

Provide a better way to regenerate private keys other than manually tainting state. #520

lavahot opened this issue May 20, 2024 · 0 comments
Labels
enhancement

Comments

@lavahot
Copy link

lavahot commented May 20, 2024

Terraform CLI and Provider Versions

Terraform v1.6.4
on darwin_arm64

  • provider registry.terraform.io/hashicorp/tls v4.0.5

Use Cases or Problem Statement

According to the documentation, the only way to regenerate a private key resource is to manually taint the resource in state. This can add significant ongoing friction to maintaining a deployment (or several deployments) when secrets rotate.

Proposal

Add some method of rotating the key that relies on changing some derived value in the resource. Maybe something like #395. Or a triggers object like in time_sleep.

How much impact is this issue causing?

Medium

Additional Information

No response

Code of Conduct

  • I agree to follow this project's Code of Conduct
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lavahot