Skip to content

Commit 725c31a

Browse files
gtoonstragtoonstra
authored
Merge pull request #47 from datafold/gerard-p-3509-enable-kms-key-rotation
fix: Enable KMS key rotation
2 parents c771641 + 7f9a1bb commit 725c31a

File tree

1 file changed

+4
-3
lines changed

1 file changed

+4
-3
lines changed

modules/database/secrets.tf

Lines changed: 4 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,9 @@
11
# KMS key for encrypting RDS instance
22
resource "aws_kms_key" "rds" {
3-
count = var.create_rds_kms_key ? 1 : 0
4-
multi_region = true
5-
description = "KMS key for RDS"
3+
count = var.create_rds_kms_key ? 1 : 0
4+
multi_region = true
5+
description = "KMS key for RDS"
6+
enable_key_rotation = true
67
}
78

89
resource "aws_kms_alias" "rds" {

0 commit comments

Comments
 (0)