Terraform: aws_db_instance resource to include argument for non default encryption key
Currently one can set storage_encrypted argument to true and expect to have encryption at rest enabled on RDS instance. This uses the default encryption key (from AWS KMS service). It would be useful to have ie. encryption_key argument which takes an ARN of a key which already exists (created from AWS console or maybe in the future from aws_kms resources) to encrypt with.
rmldsky
All 8 comments
Hi @rmldsky
I have finally gotten around to adding a PR for this - sorry it took so long!
Paul
stack72
on 13 May 2016
@stack72 Thanks for addressing this. I have been waiting for this. Do you know when will be the next release that includes this feature?
krushi90
on 13 May 2016
Hi @krushi90
This feature won't hit until 0.7 (which will be a little while yet) - but at least you know it's in there and scheduled for release
P.
stack72
on 13 May 2016
merged to master :)
stack72
on 13 May 2016
Thanks @stack72 . Waiting for 0.7 release
krushi90
on 3 Jun 2016
@stack72 Does this also apply for a aws_rds_cluster and related resources?
xatnys
on 14 Jul 2016
Hi @xatnys
Unfortunately this specific PR was only for db_instance. If you need it added to the others, please can you open an issue with what resources need it?
thanks
Paul
stack72
on 14 Jul 2016
I'm going to lock this issue because it has been closed for _30 days_ โณ. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
![hashibot[bot] picture](https://avatars2.githubusercontent.com/in/8332?v=4&s=40)
hashibot[bot]
on 24 Apr 2020
Related issues
sprokopiak
ยท
3Comments
ketzacoatl
ยท
3Comments
thebenwaters
ยท
3Comments
c4milo
ยท
3Comments
shanmugakarna
ยท
3Comments
Most helpful comment
Hi @rmldsky
I have finally gotten around to adding a PR for this - sorry it took so long!
Paul