@groovy.transform.CompileStatic @SuppressWarnings(value: MethodCount) @groovy.util.logging.Slf4j class S3Backend extends OpenTofuBackend
Describes the attributed for a remote S3 backend.
| Modifiers | Name | Description |
|---|---|---|
static class |
S3Backend.AssumeRole |
Base class for configuring assume roles without web identity. |
static class |
S3Backend.AssumeRoleBase |
Base class for configuring assume roles with or without web identity. |
static class |
S3Backend.WebIdentity |
| Modifiers | Name | Description |
|---|---|---|
static String |
AWS_ACCESS_KEY |
|
static String |
AWS_SECRET_KEY |
|
static String |
TOKEN_ASSUME_ROLE |
|
static String |
TOKEN_ASSUME_ROLE_POLICY |
|
static String |
TOKEN_BUCKET |
|
static String |
TOKEN_ENDPOINTS |
|
static String |
TOKEN_REGION |
|
static String |
TOKEN_REMOTE_STATE_NAME |
|
static String |
TOKEN_TRANSITIVE_TAG_KEYS |
|
static String |
TOKEN_WEB_IDENTITY |
| Fields inherited from class | Fields |
|---|---|
class OpenTofuBackend |
parent |
| Constructor and description |
|---|
S3Backend
(String name, OpenTofuExtension parent, Project tempProjectRef) |
| Type Params | Return Type | Name and description |
|---|---|---|
|
S3Backend.AssumeRole |
assumeRole(Action<AssumeRole> configurator)Configures backend assume role. |
|
S3Backend.AssumeRole |
assumeRole(groovy.lang.Closure<?> configurator)Configures backend assume role. |
|
java.util.Map<String, org.ysb33r.gradle.iac.base.tf.backends.TokenValue> |
customSourceSetTokens(org.ysb33r.gradle.iac.base.tf.SourceSetBase sourceSet)Generates tokens for a specific source set & backend combination. |
|
void |
setAccessKey(Object value)Sets a token called access_key. |
|
void |
setAccessKeyProperty(String propertyName)Sets a token called access_key. |
|
void |
setAcl(Object value)Sets a token called acl. |
|
void |
setAwsRegion(Object region)The AWS region used for remote state. |
|
void |
setBucket(Object bucketName)Alias for setS3BucketName |
|
void |
setCredentialsFile(Object value)Sets a token called shared_credentials_file. |
|
void |
setDynamoDbEndpoint(Object value)Sets a token called endpoints.dynamodb. |
|
void |
setDynamoDbTable(Object value)Sets a token called dynamodb_table_arn. |
|
void |
setEncrypt(Boolean value)Sets a token called encrypt. |
|
void |
setForcePathStyle(Boolean value)Sets a token called force_path_style. |
|
void |
setIamEndpoint(Object value)Sets a token called endpoints.iam. |
|
void |
setKey(Object rsn)Sets a new remote state name |
|
void |
setMaxRetries(Integer value)Sets a token called iam_endpoint. |
|
void |
setProfile(Object value)Sets a token called profile. |
|
void |
setRegion(Object region)Alias for setAwsRegion. |
|
void |
setRemoteStateName(Object rsn)Sets a new remote state name |
|
void |
setS3BucketName(Object bucketName)Sets the S3 bucket used for state storage. |
|
void |
setS3Endpoint(Object value)Sets a token called endpoints.s3. |
|
void |
setSecretKey(Object value)Sets a token called secret_key. |
|
void |
setSecretProperty(String propertyName)Sets a token called secret_key. |
|
void |
setSetKmsKeyId(Object value)Sets a token called kms_key_id. |
|
void |
setSkipCredentialsValidation(Boolean value)Sets a token called skip_credentials_validation. |
|
void |
setSkipMetadataApiCheck(Boolean value)Sets a token called skip_metadata_api_check. |
|
void |
setSkipRegionValidation(Boolean value)Sets a token called skip_region_validation. |
|
void |
setSseCustomerKey(Object value)Sets a token called sse_customer_key. |
|
void |
setStsEndpoint(Object value)Sets a token called endpoints.endpoints.. |
|
void |
setWorkspaceKeyPrefix(Object value)Sets a token called workspace_key_prefix. |
Configures backend assume role.
configurator - ConfiguratorConfigures backend assume role.
configurator - ConfiguratorGenerates tokens for a specific source set & backend combination. Default does not configure anything.
sourceSet - source set used as input for configuration. Sets a token called access_key.
value - AWS access key Sets a token called access_key.
propertyName - Name of Gradle/system property holding AWS access key.
(Will fallback to environment variable). Sets a token called acl.
value - Canned S3 ACL to be applied to state file. The AWS region used for remote state.
Sets this as a token called aws_region.
region - Anything convertible to a string.Alias for setS3BucketName
bucketName - Bucket name Sets a token called shared_credentials_file.
value - AWS shared credentials file. Anything convertible to a file Sets a token called endpoints.dynamodb.
value - Custom DynamoDB endpoint. Sets a token called dynamodb_table_arn.
value - Full ARN to DynamoDB lock tabke. Sets a token called encrypt.
value - Enable server-side encryption of state file. Sets a token called force_path_style.
value - true to force https://<HOST>/<BUCKET>. Sets a token called endpoints.iam.
value - Customised IAM endpoint Sets a new remote state name
Sets this as a token called key
Alternative to setRemoteStateName.
rsn - Anything that can be lazy-evaluated to a string. Sets a token called iam_endpoint.
value - Max retries. Sets a token called profile.
value - AWS credentials profileAlias for setAwsRegion.
region - Anything convertible to a string.Sets a new remote state name
Sets this as a token called key
rsn - Anything that can be lazy-evaluated to a string. Sets the S3 bucket used for state storage.
Sets this as a token called bucket_name
bucketName - Bucket name Sets a token called endpoints.s3.
value - Custom S3 endpoint. Sets a token called secret_key.
value - AWS secret Sets a token called secret_key.
propertyName - Name of property holding the secret. Sets a token called kms_key_id.
value - Key identifier. Sets a token called skip_credentials_validation.
value - true to skip credentials validation Sets a token called skip_metadata_api_check.
value - true to skip metadata API check. Sets a token called skip_region_validation.
value - true to skip region validation Sets a token called sse_customer_key.
value - SSE customer key. Sets a token called endpoints.endpoints..
value - Customised STS endpoint Sets a token called workspace_key_prefix.
value - Workspace key prefix for non-default workspace.