nomad_acl_binding_rule

Manages an ACL Binding Rule in Nomad.

Example Usage

Creating an ALC Binding Rule associated to an ACL Auth Method also created and managed by Terraform:

resource "nomad_acl_auth_method" "my_nomad_acl_auth_method" {
  name           = "my-nomad-acl-auth-method"
  type           = "OIDC"
  token_locality = "global"
  max_token_ttl  = "10m0s"
  default        = true

  config {
    oidc_discovery_url    = "https://uk.auth0.com/"
    oidc_client_id        = "someclientid"
    oidc_client_secret    = "someclientsecret-t"
    bound_audiences       = ["someclientid"]
    allowed_redirect_uris = [
      "http://localhost:4649/oidc/callback",
      "http://localhost:4646/ui/settings/tokens",
    ]
    list_claim_mappings = {
      "http://nomad.internal/roles" : "roles"
    }
  }
}

resource "nomad_acl_binding_rule" "my_nomad_acl_binding_rule" {
  description = "engineering rule"
  auth_method = nomad_acl_auth_method.my_nomad_acl_auth_method.name
  selector    = "engineering in list.roles"
  bind_type   = "role"
  bind_name   = "engineering-read-only"
}

Argument Reference

The following arguments are supported: