All Modules
AzureSecurity
Workload Identity
Managed identity with federated credentials for AKS workload identity
Usage
module "workload_identity" {
source = "github.com/fencepencil/fencepencil-azure-modules//workload-identity"
name_prefix = "<name_prefix>"
environment = "<environment>"
resource_group_name = "<resource_group_name>"
location = "<location>"
identity_name = "<identity_name>"
oidc_issuer_url = "<oidc_issuer_url>"
namespace = "<namespace>"
service_account = "<service_account>"
tags = var.tags
}Inputs (8)
| Name | Type | Description | Default | Required |
|---|---|---|---|---|
name_prefix | string | Prefix for resource naming | — | yes |
environment | string | Deployment environment | — | yes |
resource_group_name | string | Resource group name | — | yes |
location | string | Azure region | — | yes |
identity_name | string | Name suffix for the identity | — | yes |
oidc_issuer_url | string | OIDC issuer URL of the AKS cluster | — | yes |
namespace | string | Kubernetes namespace | — | yes |
service_account | string | Kubernetes service account name | — | yes |
Outputs (3)
| Name | Description |
|---|---|
identity_id | ID of the managed identity |
client_id | Client ID of the managed identity |
principal_id | Principal ID of the managed identity |