vault_identity_group_member_entity_ids

Manages member entities for an Identity Group for Vault. The Identity secrets engine is the identity management solution for Vault.

Example Usage

Exclusive Member Entities

resource "vault_identity_group" "internal" {
  name                        = "internal"
  type                        = "internal"
  external_member_entity_ids  = true

  metadata = {
    version = "2"
  }
}

resource "vault_identity_entity" "user" {
  name = "user"
}

resource "vault_identity_group_member_entity_ids" "members" {

  exclusive         = true
  member_entity_ids = [vault_identity_entity.user.id]
  group_id          = vault_identity_group.internal.id
}

Non-exclusive Member Entities

resource "vault_identity_group" "internal" {
  name                        = "internal"
  type                        = "internal"
  external_member_entity_ids  = true

  metadata = {
    version = "2"
  }
}

resource "vault_identity_entity" "test_user" {
  name = "test"
}

resource "vault_identity_entity" "second_test_user" {
  name = "second_test"
}

resource "vault_identity_entity" "dev_user" {
  name = "dev"
}

resource "vault_identity_group_member_entity_ids" "test" {
  member_entity_ids = [vault_identity_entity.test_user.id,
    vault_identity_entity.second_test_user.id]

  exclusive = false

  group_id = vault_identity_group.internal.id
}

resource "vault_identity_group_member_entity_ids" "others" {
  member_entity_ids = [vault_identity_entity.dev_user.id]

  exclusive = false

  group_id = vault_identity_group.internal.id
}

Argument Reference

The following arguments are supported:

Attributes Reference

No additional attributes are exposed by this resource.