# terraform-cloudflare-browser-ssh
This is a simple terraform modules that creates a tunnel to a host using Cloudflare's browser ssh.
Includes a configured Tunnel, Access Application, Access Policy, and SSH CA certificate.
## Requirements
| Name | Version |
|------|---------|
|
[cloudflare](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#requirement\_cloudflare) | >= 4.21.0 |
|
[random](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#requirement\_random) | >= 3.5.1 |
## Providers
| Name | Version |
|------|---------|
|
[cloudflare](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#provider\_cloudflare) | >= 4.21.0 |
|
[random](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#provider\_random) | >= 3.5.1 |
## Modules
No modules.
## Resources
| Name | Type |
|------|------|
| [cloudflare_access_application.app](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/https://registry.terraform.io/providers/cloudflare/cloudflare/latest/docs/resources/access_application) | resource |
| [cloudflare_access_ca_certificate.ssh_cert](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/https://registry.terraform.io/providers/cloudflare/cloudflare/latest/docs/resources/access_ca_certificate) | resource |
| [cloudflare_tunnel.ssh_tunnel](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/https://registry.terraform.io/providers/cloudflare/cloudflare/latest/docs/resources/tunnel) | resource |
| [cloudflare_tunnel_config.ssh_tunnel](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/https://registry.terraform.io/providers/cloudflare/cloudflare/latest/docs/resources/tunnel_config) | resource |
| [random_password.tunnel_secret](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/https://registry.terraform.io/providers/hashicorp/random/latest/docs/resources/password) | resource |
## Inputs
| Name | Description | Type | Default | Required |
|------|-------------|------|---------|:--------:|
|
[access\_application\_name](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_access\_application\_name) | Name of the Access Application. Defaults to 'SSH for ${var.domain}' | `string` | n/a | yes |
|
[account\_id](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_account\_id) | Cloudflare Account ID | `string` | n/a | yes |
|
[allowed\_idps](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_allowed\_idps) | List of IDPs allowed to authenticate to the application | `list(string)` | n/a | yes |
|
[app\_launcher\_visible](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_app\_launcher\_visible) | Whether to show the app launcher | `bool` | `true` | no |
|
[domain](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_domain) | Domain to use for the SSH Tunnel | `string` | n/a | yes |
|
[session\_duration](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_session\_duration) | Session duration for the application | `string` | `"24h"` | no |
|
[skip\_interstitial](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_skip\_interstitial) | Whether to skip the interstitial page | `bool` | `false` | no |
|
[ssh\_host](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_ssh\_host) | Host to connect to via SSH | `string` | `"localhost"` | no |
|
[ssh\_port](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_ssh\_port) | Port to connect to via SSH | `number` | `22` | no |
|
[tunnel\_name](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#input\_tunnel\_name) | Name of the SSH Tunnel | `string` | `""` | no |
## Outputs
| Name | Description |
|------|-------------|
|
[application\_id](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_application\_id) | Browser SSH Access Application ID |
|
[aud](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_aud) | Audience tag for the SSH Access Application |
|
[ssh\_cert](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_ssh\_cert) | SSH Certificate for the SSH Access Application |
|
[tunnel\_cname](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_tunnel\_cname) | CNAME for the SSH Tunnel |
|
[tunnel\_id](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_tunnel\_id) | Tunnel ID |
|
[tunnel\_token](https://github.com/Cyb3r-Jak3/terraform-cloudflare-browser-ssh/blob/master/#output\_tunnel\_token) | Token for the SSH Tunnel. Needed to connect to the tunnel. |