Skip to content

Release test for AWS IAM Redis passwordless #189

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 17 commits into from
Closed

Release test for AWS IAM Redis passwordless #189

Show file tree
Hide file tree
Changes from 7 commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
1c05e19
Add AWS IAM Redis passwordless authentication variables
raviharshicorp Sep 30, 2025
3ffea3a
feat: add Sidekiq Redis connection support for passwordless auth
raviharshicorp Nov 4, 2025
3bcad9f
debug: Add Redis environment variables debugging outputs
raviharshicorp Nov 6, 2025
61183c0
fix: Add missing AWS IAM Redis passwordless authentication variables
raviharshicorp Nov 6, 2025
0040135
Merge branch 'main' into pravi/IND-5861
raviharshicorp Nov 7, 2025
4bbb56e
fix: Apply terraform fmt to debug outputs in runtime_container_engine…
raviharshicorp Nov 7, 2025
6b5c497
Merge branch 'pravi/IND-5861' of github.com:hashicorp/terraform-rando…
raviharshicorp Nov 7, 2025
8cd7f92
fix: correct Redis AWS IAM variable names and add database AWS IAM su…
raviharshicorp Nov 18, 2025
73e4c53
cleanup: remove unnecessary PostgreSQL AWS IAM variables
raviharshicorp Nov 18, 2025
b8e6901
Add missing Redis passwordless AWS variables and TFE environment vari…
raviharshicorp Nov 18, 2025
945c81a
Add missing TFE Redis Sidekiq environment variables per documentation
raviharshicorp Nov 19, 2025
bfe735f
Fix Redis username and password for IAM authentication
raviharshicorp Nov 19, 2025
e3d8379
Update Redis config to use custom IAM user for testing
raviharshicorp Nov 19, 2025
0bc3c8e
Temporarily revert to 'default' user to test Redis IAM auth works
raviharshicorp Nov 20, 2025
42c91b4
Revert Redis config to use custom IAM user
raviharshicorp Nov 20, 2025
51aad5a
Extract repeated redis_passwordless_aws_use_instance_profile conditio…
raviharshicorp Nov 27, 2025
5ba5078
Add documentation for TFE_REDIS_SIDEKIQ_USE_TLS variable
raviharshicorp Nov 27, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 23 additions & 0 deletions modules/runtime_container_engine_config/outputs.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,3 +10,26 @@ output "podman_kube_yaml" {
value = base64encode(yamlencode(local.kube))
description = "A base 64 encoded yaml object that will be used as the Podman kube.yaml file for TFE deployment"
}

output "debug_redis_env_vars" {
value = {
TFE_REDIS_USER = local.redis.TFE_REDIS_USER
TFE_REDIS_USE_AUTH = local.redis.TFE_REDIS_USE_AUTH
TFE_REDIS_USE_TLS = local.redis.TFE_REDIS_USE_TLS
TFE_REDIS_PASSWORDLESS_AWS_USE_IAM = local.redis.TFE_REDIS_PASSWORDLESS_AWS_USE_IAM
TFE_REDIS_SIDEKIQ_PASSWORDLESS_AWS_USE_IAM = local.redis.TFE_REDIS_SIDEKIQ_PASSWORDLESS_AWS_USE_IAM
TFE_REDIS_CA_CERT_PATH = local.redis.TFE_REDIS_CA_CERT_PATH
}
description = "Debug output for Redis environment variables"
}

output "debug_redis_input_vars" {
value = {
redis_user = var.redis_user
redis_use_auth = var.redis_use_auth
redis_use_tls = var.redis_use_tls
redis_passwordless_aws_use_iam = var.redis_passwordless_aws_use_iam
redis_ca_cert_path = var.redis_ca_cert_path
}
description = "Debug output for Redis input variables"
}
2 changes: 2 additions & 0 deletions modules/runtime_container_engine_config/redis_config.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,8 @@ locals {
TFE_REDIS_PASSWORDLESS_AZURE_USE_MSI = var.redis_passwordless_azure_use_msi
TFE_REDIS_SIDEKIQ_PASSWORDLESS_AZURE_USE_MSI = var.redis_passwordless_azure_use_msi
TFE_REDIS_PASSWORDLESS_AZURE_CLIENT_ID = var.redis_passwordless_azure_client_id
TFE_REDIS_PASSWORDLESS_AWS_USE_IAM = var.redis_passwordless_aws_use_iam
TFE_REDIS_SIDEKIQ_PASSWORDLESS_AWS_USE_IAM = var.redis_passwordless_aws_use_iam
}
redis_configuration = local.active_active ? local.redis : {}
}
6 changes: 6 additions & 0 deletions modules/runtime_container_engine_config/variables.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -369,6 +369,12 @@ variable "redis_passwordless_azure_client_id" {
description = "Azure Managed Service Identity (MSI) Client ID to be used for redis authentication. If not set, System Assigned Managed Identity will be used."
}

variable "redis_passwordless_aws_use_iam" {
default = false
type = bool
description = "Whether or not to use AWS IAM authentication to connect to the Redis server. Defaults to false if no value is given."
}

variable "run_pipeline_image" {
type = string
description = "Container image used to execute Terraform runs. Leave blank to use the default image that comes with Terraform Enterprise. Defaults to \"\" if no value is given."
Expand Down