DEV Community

Cover image for Rotate on a periodic basis using Terraform
Antoine
Antoine

Posted on

1 1

Rotate on a periodic basis using Terraform

#terraform

Photo by Jeremy Perkins on Unsplash

One key component of modern security is rotating secret.

Hashicorp has a good product that can generate secrets based on a master one : Vault.

I though it was very difficult to achieve this through Terraform.
But Terraform has a provider that can provide a change at the defined frequency basis : time_rotating.

Example:


terraform {
  required_providers {
    time = {
      source = "hashicorp/time"
      version = "0.5.0"
    }
  }
}

resource "time_rotating" "example" {
  rotation_days = 30
}

resource "random_id" "server" {
  keepers = {
    # Generate a new password each time time rotates
    rotation = time_rotating.example
  }

  byte_length = 8
}

Hope this helps !

profile
AWS
 Promoted

AWS Q Developer image

Your AI Code Assistant

Generate and update README files, create data-flow diagrams, and keep your project fully documented. Built to handle large projects, Amazon Q Developer works alongside you from idea to production code.

Get started free in your IDE

Top comments (0)

profile
Sentry
 Promoted

Sentry image

See why 4M developers consider Sentry, “not bad.”

Fixing code doesn’t have to be the worst part of your day. Learn how Sentry can help.

Learn more

Read next

marcuscjh profile image

My AWS Cloud Certification Was Expiring — Here’s How I Recertified It Through Gamification

Marcus Chan -

godofgeeks profile image

Database Design & ER Modeling

Aviral Srivastava -

sfdcnews profile image

5 Risks of Automation, 12 Tips to Speed Up Page Loading, AI\'s Impact on Developers

SFDC News -

kallileiser profile image

Exploring the Hyperledger Fabric Python SDK: Open Source, Funding, and Community Innovation

kallileiser -

👋 Kindness is contagious

Please leave a ❤️ or a friendly comment on this post if you found it helpful!

Okay