jprdonnelly/opentf
1
0
Fork 0
mirror of https://github.com/opentffoundation/opentf.git synced 2026-03-02 11:05:45 -05:00
Code Issues Packages Projects Releases Wiki Activity
32,270 Commits 253 Branches 82 Tags
ffeded20a4d87c949de9f9624cdc192015ca4355
Commit Graph

28 Commits

Author SHA1 Message Date
Christian Mesh
ffeded20a4 Better handling of key_provider references (#1921) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-08-29 10:32:01 -04:00
Christian Mesh
3c45c30249 Move varhcl (body variable inspection) into hcl fork (#1919) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-08-23 10:01:07 -04:00
Oleksandr Levchenkov
19b5287b8f allow static evaluations in encryption configuration (#1728) 
Signed-off-by: ollevche <ollevche@gmail.com>
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Signed-off-by: Oleksandr Levchenkov <ollevche@gmail.com>
Co-authored-by: Christian Mesh <christianmesh1@gmail.com>
 2024-06-24 10:18:16 -04:00
Oleksandr Levchenkov
568ff66bef add early validation for enforced encryption methods (#1711) 
Signed-off-by: ollevche <ollevche@gmail.com>
 2024-06-12 21:06:06 +03:00
Oleksandr Levchenkov
5a161c8bcc add automated copyright header check (#1696) 
Signed-off-by: ollevche <ollevche@gmail.com>
Signed-off-by: Oleksandr Levchenkov <ollevche@gmail.com>
 2024-06-03 16:49:36 +03:00
Christian Mesh
d7e96665f6 Add unencrypted Method for migrations (#1458) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-04-12 09:38:21 -04:00
Oleksandr Levchenkov
e1e182987b add OpenBao as key provider for state encryption (#1436) 
Signed-off-by: ollevche <ollevche@gmail.com>
 2024-04-08 13:38:17 +01:00
Ashwin Annamalai
046beee664 Change numbers to make tests work in i386 (#1454) 
Signed-off-by: Ashwin Annamalai <4549937+IgnorantSapient@users.noreply.github.com>
 2024-04-01 15:13:26 -04:00
Christian Mesh
979bf5ce3f Fix #1407: Pass through metadata fields in state encryption (#1417) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-28 11:14:08 -04:00
Oleksandr Levchenkov
641751f163 remove GCP KMS key reading from env (#1440) 
Signed-off-by: ollevche <ollevche@gmail.com>
 2024-03-28 07:43:54 -04:00
Christian Mesh
f02bb11812 Generate all encryption keys during encryption setup (#1421) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Co-authored-by: James Humphries <jamesh@spacelift.io>
 2024-03-26 07:43:34 -04:00
Christian Mesh
230fc89a28 GCP KMS for Key Provider for Encryption (#1392) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-18 15:54:20 -04:00
James Humphries
73f5fbf4bc Added aws_kms key provider compliance tests (#1395) 
Signed-off-by: James Humphries <james@james-humphries.co.uk>
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Co-authored-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-18 14:48:19 -04:00
Janos
8c99c75229 [State Encryption] Compliance tests (#1377) 
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
 2024-03-14 15:53:40 +01:00
Janos
19a994ee7f Documentation updates for 1.7.0-alpha1 (state encryption) (#1396) 
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
 2024-03-14 15:05:05 +01:00
Christian Mesh
07a9185767 Initial implementation of aws_kms encryption.key_provider (#1349) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Signed-off-by: James Humphries <james@james-humphries.co.uk>
Co-authored-by: James Humphries <james@james-humphries.co.uk>
 2024-03-13 13:19:20 -04:00
Christian Mesh
586c45fe5a Refactor encryption configuration (#1387) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-13 10:58:52 -04:00
Janos
4c4d9bca67 Fixed crash on encryption use (#1384) 
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
 2024-03-13 12:00:31 +01:00
Christian Mesh
b052880246 Encryption should require an explicit fallback (#1364) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-11 09:24:59 -04:00
Janos
a18e643a8d PBKDF2 passphrase key provider (#1310) 
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Co-authored-by: Christian Mesh <christianmesh1@gmail.com>
Co-authored-by: James Humphries <jamesh@spacelift.io>
 2024-03-11 14:24:31 +01:00
Christian Mesh
cef62ea738 Update to encryption key provider interface (#1351) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-08 07:55:08 -05:00
Christian Mesh
5ab6167bbf Initial wiring of encryption through the command package (#1316) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-07 08:55:57 -05:00
Janos
fa638907f1 Fixes #1169: AES-GCM implementation (#1291) 
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
Signed-off-by: Mikel Olasagasti Uranga <mikel@olasagasti.info>
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Signed-off-by: James Humphries <James@james-humphries.co.uk>
Co-authored-by: James Humphries <jamesh@spacelift.io>
Co-authored-by: Serdar Dalgıç <serdardalgic@users.noreply.github.com>
Co-authored-by: Mikel Olasagasti Uranga <mikel@olasagasti.info>
Co-authored-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-07 10:24:37 +00:00
Christian Mesh
36eb93f958 Integrate encryption config into configs package (#1295) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-04 11:04:45 -05:00
Christian Mesh
2f5dcd5c0a Integrate Encryption into State Backends (#1288) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-04 09:25:14 -05:00
Christian Mesh
ac3ed86617 Integrate encryption into plan serialization (#1292) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-04 09:00:29 -05:00
Christian Mesh
997e5fa46e State Encryption Error Handling / Diagnostics (#1294) 
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
 2024-03-04 08:30:30 -05:00
James Humphries
cbab4bee83 State Encryption Documentation and Partial Implementation (#1227) 
Signed-off-by: StephanHCB <sbs_github_u43a@packetloss.de>
Signed-off-by: Christian Mesh <christianmesh1@gmail.com>
Signed-off-by: Janos <86970079+janosdebugs@users.noreply.github.com>
Signed-off-by: James Humphries <james@james-humphries.co.uk>
Co-authored-by: StephanHCB <sbs_github_u43a@packetloss.de>
Co-authored-by: Janos <86970079+janosdebugs@users.noreply.github.com>
Co-authored-by: Christian Mesh <christianmesh1@gmail.com>
 2024-02-16 14:59:19 +00:00