Move certificate into its own tf file

2024-12-26 20:32:58 +01:00 · 2024-12-26 20:32:58 +01:00 · c1018d9bb3
commit c1018d9bb3
parent d52e15ebd8
2 changed files with 14 additions and 15 deletions
--- a/cloud/aws/rds/serverless/rds.certificate.tf
+++ b/cloud/aws/rds/serverless/rds.certificate.tf
@ -0,0 +1,14 @@
+
+data "aws_rds_certificate" "default" {
+  id                = aws_rds_cluster_instance.instance.ca_cert_identifier
+  latest_valid_till = true
+}
+data "http" "cert_data" {
+  url = "https://truststore.pki.rds.amazonaws.com/global/global-bundle.pem"
+}
+output "cert" {
+  value = data.aws_rds_certificate.default
+}
+output "cert_data" {
+  value = data.http.cert_data.response_body
+}
--- a/cloud/aws/rds/serverless/rds.tf
+++ b/cloud/aws/rds/serverless/rds.tf
@ -56,12 +56,6 @@ resource "aws_rds_cluster" "cluster" {
    }
  )
 }
-
-data "aws_rds_certificate" "default" {
-  id                = aws_rds_cluster_instance.instance.ca_cert_identifier
-  latest_valid_till = true
-}
-
 resource "aws_rds_cluster_instance" "instance" {
  cluster_identifier   = aws_rds_cluster.cluster.id
  identifier_prefix    = "${local.sanitised_name}-"
@ -99,16 +93,7 @@ resource "aws_rds_cluster_endpoint" "endpoint" {
  )
 }

-data "http" "cert_data" {
-  url = "https://truststore.pki.rds.amazonaws.com/global/global-bundle.pem"
-}

 output "endpoints" {
  value = aws_rds_cluster_endpoint.endpoint
 }
-output "cert" {
-  value = data.aws_rds_certificate.default
-}
-output "cert_data" {
-  value = data.http.cert_data.response_body
-}