我要“别名”通过aws_kms创建的密钥,如下所示:
resource "aws_kms_key" "s3" {
description = "Key dedicated to encryption for S3"
deletion_window_in_days = 7
policy = data.template_file.iam-kms-s3.template
}
resource "aws_kms_alias" "s3" {
name = "alias/...s3-key..."
target_key_id = aws_kms_key.s3.arn
}
似乎符合文档要求。但是,没有创建别名:不在KMS控制台上显示,并且无法在后续模块中引用
我想念一个主意吗?
预先感谢
弗雷德