Module: Terrafying::Components::CA

Included in:: LetsEncrypt, SelfSignedCA

Defined in:: lib/terrafying/components/ca.rb

Instance Method Summary collapse

Instance Method Details

#<=>(other) ⇒ `Object`



47
48
49

# File 'lib/terrafying/components/ca.rb', line 47

def <=>(other)
  @name <=> other.name
end

#create_keypair(name, options = {}) ⇒ `Object`



8
9
10

# File 'lib/terrafying/components/ca.rb', line 8

def create_keypair(name, options={})
  create_keypair_in(self, name, options)
end

#reference_keypair(ctx, name) ⇒ `Object`

# File 'lib/terrafying/components/ca.rb', line 12

def reference_keypair(ctx, name)
  key_ident = "#{@name}-#{tf_safe(name)}"

  ref = {
    name: name,
    ca: self,
    source: {
      cert: File.join("s3://", @bucket, @prefix, @name, name, "cert"),
      key: File.join("s3://", @bucket, @prefix, @name, name, "key"),
    },
    resources: [
      "aws_s3_bucket_object.#{key_ident}-key",
      "aws_s3_bucket_object.#{key_ident}-cert"
    ],
    iam_statement: {
      Effect: "Allow",
      Action: [
        "s3:GetObjectAcl",
        "s3:GetObject",
      ],
      Resource: [
        "arn:aws:s3:::#{File.join(@bucket, @prefix, @name, "ca.cert")}",
        "arn:aws:s3:::#{File.join(@bucket, @prefix, @name, name, "cert")}",
        "arn:aws:s3:::#{File.join(@bucket, @prefix, @name, name, "key")}",
      ]
    }
  }

  if self == ctx
    ref[:resources] << "aws_s3_bucket_object.#{@name}-cert"
  end

  ref
end

Module: Terrafying::Components::CA

Instance Method Summary collapse

Instance Method Details

#<=>(other) ⇒ Object

#create_keypair(name, options = {}) ⇒ Object

#reference_keypair(ctx, name) ⇒ Object

#<=>(other) ⇒ `Object`

#create_keypair(name, options = {}) ⇒ `Object`

#reference_keypair(ctx, name) ⇒ `Object`