From 4a4e5d98a2e9e82fbbe889c5df613401c6fd7702 Mon Sep 17 00:00:00 2001
From: badra001 <donald.e.badrak.ii@census.gov>
Date: Fri, 5 Jan 2024 14:32:51 -0500
Subject: [PATCH] update

---
 acmpca/README.md      |  4 +++-
 acmpca/example.tf.txt | 54 +++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 57 insertions(+), 1 deletion(-)
 create mode 100644 acmpca/example.tf.txt

diff --git a/acmpca/README.md b/acmpca/README.md
index 59902fc..0fa05f3 100644
--- a/acmpca/README.md
+++ b/acmpca/README.md
@@ -67,7 +67,9 @@ the ARN if completed.   You'll use the ARN for an AWS LB Listener.
 
 ## Modules
 
-No modules.
+| Name | Source | Version |
+|------|--------|---------|
+| <a name="module_cert"></a> [cert](#module\_cert) | git@github.e.it.census.gov:terraform-modules/aws-certificates//acm | n/a |
 
 ## Resources
 
diff --git a/acmpca/example.tf.txt b/acmpca/example.tf.txt
new file mode 100644
index 0000000..237724c
--- /dev/null
+++ b/acmpca/example.tf.txt
@@ -0,0 +1,54 @@
+module "cert1" {
+  source = "git@github.e.it.census.gov:terraform-modules/aws-certificates//acmpca"
+
+  certificate_dns            = "test1.domain.census.gov"
+  contact_email              = "cio.engineering.alert.list@census.gov"
+  create_files               = false
+  certificate_authority_mode = "general"
+  certificate_type           = "end-entity"
+
+  ## optional
+  # certificate_san    = [ "otherdomain.domain.census.gov" ]
+}
+
+
+module "cert2" {
+  source = "git@github.e.it.census.gov:terraform-modules/aws-certificates//acmpca"
+
+  certificate_dns               = "test2.domain.census.gov"
+  contact_email                 = "cio.engineering.alert.list@census.gov"
+  create_files                  = true
+  certificate_authority_mode    = "general"
+  certificate_type              = "subordinate-ca"
+  certificate_subject_overrides = { ou = "PKI-EKS my-cluster" }
+}
+
+module "cert3" {
+  source = "git@github.e.it.census.gov:terraform-modules/aws-certificates//acmpca"
+
+  certificate_dns            = "test1.domain.census.gov"
+  contact_email              = "cio.engineering.alert.list@census.gov"
+  create_files               = false
+  certificate_authority_mode = "short"
+  validity_days              = 2
+
+  ## optional
+  # certificate_san    = [ "otherdomain.domain.census.gov" ]
+}
+
+certificate_authority_mode     = "general"
+certificate_authority_template = ""
+certificate_cn                 = ""
+certificate_dns                = ""
+certificate_filename           = ""
+certificate_san                = []
+certificate_subject_overrides  = {}
+certificate_type               = "end-entity"
+contact_email                  = ""
+create_files                   = false
+csr_filename                   = ""
+key_filename                   = ""
+output_file_directory          = ""
+override_prefixes              = {}
+tags                           = {}
+validity_days                  = 365