fix: Set sensitive=true for sensitive outputs and use tolist() (#148)

7553adb7 · Anton Babenko · GitHub · 50e46b39 · 7553adb7 · 7553adb7
Commit 7553adb7 authored Apr 15, 2021 by Anton Babenko Committed by GitHub Apr 15, 2021
Show whitespace changes
Inline Side-by-side

Showing with 5 additions and 1 deletion

outputs.tf examples/iam-user/outputs.tf +2 -0

main.tf modules/iam-assumable-role/main.tf +1 -1

outputs.tf modules/iam-user/outputs.tf +2 -0

No files found.
--- a/examples/iam-user/outputs.tf
+++ b/examples/iam-user/outputs.tf
@@ -41,11 +41,13 @@ output "this_iam_access_key_encrypted_secret" {
 output "this_iam_access_key_secret" {
  description = "The access key secret"
  value       = module.iam_user.this_iam_access_key_secret
+  sensitive   = true
 }
 output "this_iam_access_key_ses_smtp_password_v4" {
  description = "The secret access key converted into an SES SMTP password"
  value       = module.iam_user.this_iam_access_key_ses_smtp_password_v4
+  sensitive   = true
 }
 output "this_iam_access_key_status" {

--- a/modules/iam-assumable-role/main.tf
+++ b/modules/iam-assumable-role/main.tf
 locals {
-  role_sts_externalid = flatten(list(var.role_sts_externalid))
+  role_sts_externalid = flatten(tolist(var.role_sts_externalid))
 }
 data "aws_iam_policy_document" "assume_role" {

--- a/modules/iam-user/outputs.tf
+++ b/modules/iam-user/outputs.tf
@@ -43,6 +43,7 @@ output "this_iam_access_key_id" {
 output "this_iam_access_key_secret" {
  description = "The access key secret"
  value       = element(concat(aws_iam_access_key.this_no_pgp.*.secret, [""]), 0)
+  sensitive   = true
 }
 output "this_iam_access_key_key_fingerprint" {
@@ -65,6 +66,7 @@ output "this_iam_access_key_ses_smtp_password_v4" {
    ),
    0
  )
+  sensitive = true
 }
 output "this_iam_access_key_status" {