Data Source: azurerm_key_vault_encrypted_value

Encrypts or Decrypts a value using a Key Vault Key.

Example Usage

data "azurerm_key_vault" "example" {
  name                = "mykeyvault"
  resource_group_name = "some-resource-group"
}

data "azurerm_key_vault_key" "example" {
  name         = "some-key"
  key_vault_id = data.azurerm_key_vault.example.id
}

data "azurerm_key_vault_encrypted_value" "encrypted" {
  key_vault_key_id = azurerm_key_vault_key.test.id
  algorithm        = "RSA1_5"
  plain_text_value = base64encode("some-encrypted-value")
}

data "azurerm_key_vault_encrypted_value" "decrypted" {
  key_vault_key_id = azurerm_key_vault_key.test.id
  algorithm        = "RSA1_5"
  encrypted_data   = data.azurerm_key_vault_encrypted_value.encrypted.encrypted_data
}

output "id" {
  value = data.azurerm_key_vault_encrypted_value.example.encrypted_data
}

output "decrypted_text" {
  value = nonsensitive(data.azurerm_key_vault_encrypted_value.decrypted.decoded_plain_text_value)
}

Arguments Reference

The following arguments are supported:


Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain actions: