From ef12ae246b26781bcc253185a492645b0b0ff21e Mon Sep 17 00:00:00 2001
From: Caetano Colin <164910343+caetano-colin@users.noreply.github.com>
Date: Mon, 6 May 2024 09:22:26 -0300
Subject: [PATCH] rename crypto key (#32)

---
 4-projects/modules/composer_env/crypto.tf  | 4 ++--
 4-projects/modules/composer_env/outputs.tf | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/4-projects/modules/composer_env/crypto.tf b/4-projects/modules/composer_env/crypto.tf
index 7aedbf42..0e90f5a8 100644
--- a/4-projects/modules/composer_env/crypto.tf
+++ b/4-projects/modules/composer_env/crypto.tf
@@ -53,7 +53,7 @@ resource "google_project_service_identity" "service_agents_kms" {
 }
 
 resource "google_kms_crypto_key_iam_member" "app_key" {
-  for_each      = module.app_cloudbuild_project.crypto_key
+  for_each      = module.app_cloudbuild_project.kms_keys
   crypto_key_id = each.value.id
   role          = "roles/cloudkms.admin"
   member        = "serviceAccount:${local.app_infra_pipeline_service_accounts[var.repo_name]}"
@@ -61,7 +61,7 @@ resource "google_kms_crypto_key_iam_member" "app_key" {
 
 // Add Secret Manager Service Agent to key with encrypt/decrypt permissions
 resource "google_kms_crypto_key_iam_binding" "secretmanager_agent" {
-  for_each      = module.app_cloudbuild_project.crypto_key
+  for_each      = module.app_cloudbuild_project.kms_keys
   crypto_key_id = each.value.id
   role          = "roles/cloudkms.cryptoKeyEncrypterDecrypter"
   members       = local.kms_secret_sa_accounts
diff --git a/4-projects/modules/composer_env/outputs.tf b/4-projects/modules/composer_env/outputs.tf
index fe9f5fe3..9f8dd410 100644
--- a/4-projects/modules/composer_env/outputs.tf
+++ b/4-projects/modules/composer_env/outputs.tf
@@ -36,7 +36,7 @@ output "project_sa" {
 
 output "project_crypto_key" {
   description = "key created in project"
-  value       = module.app_cloudbuild_project.crypto_key
+  value       = module.app_cloudbuild_project.kms_keys
 }
 
 # output "terraform_service_accounts" {