CAXDR-13: Make PSK generation configurable (patch)

quantum-sec · Jun 30, 2022 · 4cfc22b · 4cfc22b
1 parent 80e9636
commit 4cfc22b
Show file tree

Hide file tree

Showing 2 changed files with 28 additions and 4 deletions.
diff --git a/modules/azure-virtual-network-gateway-connection/main.tf b/modules/azure-virtual-network-gateway-connection/main.tf
@@ -37,10 +37,10 @@ resource "azurerm_local_network_gateway" "remote" {
 
 resource "random_password" "psk" {
   length  = 32
-  special = true
-  upper   = true
-  lower   = true
-  number  = true
+  special = var.psk_use_special_characters
+  upper   = var.psk_use_upper_alpha
+  lower   = var.psk_use_lower_alpha
+  number  = var.psk_use_numbers
 }
 
 resource "azurerm_virtual_network_gateway_connection" "connection" {

diff --git a/modules/azure-virtual-network-gateway-connection/variables.tf b/modules/azure-virtual-network-gateway-connection/variables.tf
@@ -41,6 +41,30 @@ variable "connection_protocol" {
   default     = "IKEv2"
 }
 
+variable "psk_use_special_characters" {
+  description = "Whether or not the generated PSK should include special characters."
+  type        = bool
+  default     = true
+}
+
+variable "psk_use_upper_alpha" {
+  description = "Whether or not the generated PSK should include uppercase alpha characters."
+  type        = bool
+  default     = true
+}
+
+variable "psk_use_lower_alpha" {
+  description = "Whether or not the generated PSK should include lowercase alpha characters."
+  type        = bool
+  default     = true
+}
+
+variable "psk_use_numbers" {
+  description = "Whether or not the generated PSK should include numbers."
+  type        = bool
+  default     = true
+}
+
 variable "tags" {
   description = "A set of tags applied to this resource."
   type        = map(string)