googleKmsKeyRing
A keyRing
is a toplevel logical grouping of cryptoKeys
.
\~> Note: KeyRings cannot be deleted from Google Cloud Platform. Destroying a Terraform-managed KeyRing will remove it from state but will not delete the resource from the project.
To get more information about KeyRing, see:
- API documentation
- How-to Guides
- Creating a key ring
Example Usage - Kms Key Ring Basic
/*Provider bindings are generated by running cdktf get.
See https://cdk.tf/provider-generation for more details.*/
import * as google from "./.gen/providers/google";
/*The following providers are missing schema information and might need manual adjustments to synthesize correctly: google.
For a more precise conversion please use the --provider flag in convert.*/
new google.kmsKeyRing.KmsKeyRing(this, "example-keyring", {
location: "global",
name: "keyring-example",
});
Argument Reference
The following arguments are supported:
-
name
- (Required) The resource name for the KeyRing. -
location
- (Required) The location for the KeyRing. A full list of valid locations can be found by runninggcloudKmsLocationsList
.
project
- (Optional) The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
Attributes Reference
In addition to the arguments listed above, the following computed attributes are exported:
id
- an identifier for the resource with formatprojects/{{project}}/locations/{{location}}/keyRings/{{name}}
Timeouts
This resource provides the following Timeouts configuration options:
create
- Default is 20 minutes.delete
- Default is 20 minutes.
Import
KeyRing can be imported using any of these accepted formats:
$ terraform import google_kms_key_ring.default projects/{{project}}/locations/{{location}}/keyRings/{{name}}
$ terraform import google_kms_key_ring.default {{project}}/{{location}}/{{name}}
$ terraform import google_kms_key_ring.default {{location}}/{{name}}
User Project Overrides
This resource supports User Project Overrides.