- Clone the plugin:
git clone [email protected]:gravitational/teleport-plugins- Install the plugin to Teleport:
cd teleport-plugins/terraform
make install- Configure teleport:
tctl create example/teleport.yaml
tctl auth sign --format=file --user=terraform --out=terraform-identity --ttl=10hMove generated keys to the desired location.
- If you desire to use an example for testing:
cp example/vars.tfvars.example example/vars.tfvarsEdit vars.tfvars and set path to certificate files which were generated in the previous step.
go install github.com/gravitational/protoc-gen-terraform
make gen-schema
Please note that ProvisionTokenV2.Allow field is defined lowercase in .proto file (repeated TokenRule allow = 2 [ (gogoproto.jsontag) = "allow,omitempty" ];). You need to manually patch types_tfschema.go, set Name: "Allow" in provision token metadata struct (GenSchemaMetaProvisionTokenV2()) until it is fixed.
See example/*.tf for available configuration options. make apply to do an initial application of this configuration to your Terraform cluster.
TF_ACC=true is required to switch Terraform to acceptance test mode. Terraform 1.0.0+ needs to be available on the host machine.
TF_ACC=true go test test/*
Use '-v' flag to see logs.