1resource "tls_private_key" "server" { 2 algorithm = "RSA" 3 rsa_bits = "2048" 4} 5 6resource "tls_cert_request" "server" { 7 private_key_pem = tls_private_key.server.private_key_pem 8 9 subject { 10 common_name = "Tonic Test Server Cert" 11 } 12 13 dns_names = [ 14 "*.test.google.fr", 15 ] 16} 17 18resource "tls_locally_signed_cert" "server" { 19 cert_request_pem = tls_cert_request.server.cert_request_pem 20 21 ca_private_key_pem = tls_private_key.root.private_key_pem 22 ca_cert_pem = tls_self_signed_cert.root.cert_pem 23 24 validity_period_hours = 43800 25 early_renewal_hours = 8760 26 27 allowed_uses = ["server_auth"] 28} 29 30resource "local_file" "server_cert" { 31 filename = "../server1.pem" 32 content = tls_locally_signed_cert.server.cert_pem 33} 34 35resource "local_file" "server_key" { 36 filename = "../server1.key" 37 content = tls_private_key.server.private_key_pem 38} 39