Description
Describe the Bug
Hi,
the dynamodbtable in backend.tf is deprecated with new terraform version.
Another issue is that kms_key_id is missed in backend.tf even if it's declared as variable in module invocation.
Expected Behavior
Remove dinamodb table and add kms_key_id in backend.tf
p.e.:
terraform {
required_version = ">= 1.0.0"
backend "s3" {
region = region
bucket = bucket_name
key = terraform.tfstate
profile = profile
encrypt = true
kms_key_id = master_key_id
}
}
Steps to Reproduce
module "kms" {
source = "terraform-aws-modules/kms/aws"
description = "kms key for ${local.identifier}"
key_usage = "ENCRYPT_DECRYPT"
enable_key_rotation = false
Policy
policy = data.aws_iam_policy_document.kms-key.json
Aliases
aliases = ["${local.identifier}-kms-key"]
tags = local.tags
}
module "terraform_state_backend" {
source = "cloudposse/tfstate-backend/aws"
version = "1.5.0"
name = "${local.identifier}-tfstate"
terraform_backend_config_file_path = "."
terraform_backend_config_file_name = "backend.tf"
force_destroy = false
profile = var.aws_profile
dynamodb_enabled = false
kms_master_key_id = module.kms.key_id
sse_encryption = "aws:kms"
}
Screenshots
terraform {
required_version = ">= 1.0.0"
backend "s3" {
region = "eu-west-1"
bucket = "-tfstate"
key = "terraform.tfstate"
profile = ""
encrypt = "true"
}
}
Environment
No response
Additional Context
No response