shared_image_version_resource - add uefi_settings - docs

hashicorp · Feb 26, 2025 · d74f0fc · d74f0fc
1 parent c6a0b90
commit d74f0fc
Showing 1 changed file with 51 additions and 0 deletions.
diff --git a/website/docs/r/shared_image_version.html.markdown b/website/docs/r/shared_image_version.html.markdown
@@ -83,6 +83,8 @@ The following arguments are supported:
 
 * `storage_account_id` - (Optional) The ID of the Storage Account where the Blob exists. Changing this forces a new resource to be created.
 
+* `uefi_settings` - (Optional) A `uefi_settings` block as defined below. Changing this forces a new Shared Image Version to be created.
+
 -> **NOTE:** `blob_uri` and `storage_account_id` must be specified together
 
 * `tags` - (Optional) A collection of tags which should be applied to this resource.
@@ -101,6 +103,55 @@ The `target_region` block supports the following:
 
 * `storage_account_type` - (Optional) The storage account type for the image version. Possible values are `Standard_LRS`, `Premium_LRS` and `Standard_ZRS`. Defaults to `Standard_LRS`. You can store all of your image version replicas in Zone Redundant Storage by specifying `Standard_ZRS`.
 
+---
+
+The `uefi_settings` block supports the following:
+
+* `signature_template_names` - (Required) A list of UEFI signature template names to include in the UEFI settings. Possible values are `MicrosoftUefiCertificateAuthorityTemplate`, `MicrosoftWindowsTemplate` and `NoSignatureTemplate`
+
+* `additional_signatures` - (Optional) An `additional_signatures` block as defined below.
+
+
+The `additional_signatures` block supports the following:
+
+* `db` - (Optional) One or more `db` blocks as defined below.
+
+* `dbx` - (Optional) One or more `dbx` blocks as defined below.
+
+* `kek` - (Optional) One or more `kek` blocks as defined below.
+
+* `pk` - (Optional) A `pk` block as defined below.
+
+
+A `db` block supports the following:
+
+* `certificate_base64` - (Required) A list of Base64-encoded certificates.
+
+* `type` - (Required) The type of key signature. Possible values are `sha256` and `x509`.
+
+
+A `dbx` block supports the following:
+
+* `certificate_base64` - (Required) A list of Base64-encoded certificates.
+
+* `type` - (Required) The type of key signature. Possible values are `sha256` and `x509`.
+
+
+A `kek` block supports the following:
+
+* `certificate_base64` - (Required) A list of Base64-encoded certificates.
+
+* `type` - (Required) The type of key signature. Possible values are `sha256` and `x509`.
+
+
+The `pk` block supports the following:
+
+* `certificate_base64` - (Required) A list of Base64-encoded certificates.
+
+* `type` - (Required) The type of key signature. Possible values are `sha256` and `x509`.
+
+
+
 ## Attributes Reference
 
 In addition to the Arguments listed above - the following Attributes are exported: