GCP Cloud Kms Key Ring
A Cloud KMS Key Ring is a logical grouping of one or more Cloud KMS Crypto Keys within a single Google Cloud location. Key rings provide an administrative boundary that allows you to control IAM permissions, audit logging and location-based residency for all the keys it contains. Every Crypto Key must belong to exactly one key ring, and operations on the key ring can therefore affect all associated keys.
For full details, see Googleβs official documentation: https://cloud.google.com/kms/docs/create-key-ring
Terrafrom Mappings:
google_kms_key_ring.name
Supported Methodsβ
GET: Get GCP Cloud Kms Key Ring by "gcp-cloud-kms-key-ring-location|gcp-cloud-kms-key-ring-name"LISTSEARCH: Search for GCP Cloud Kms Key Ring by "gcp-cloud-kms-key-ring-location"
Possible Linksβ
gcp-cloud-kms-crypto-keyβ
Every Crypto Key discovered by Overmind will be linked to the Key Ring it belongs to. This parent-child relationship allows you to trace the blast radius of mis-configuration or compromised access from an individual Crypto Key back to its enclosing Key Ring and vice-versa, providing a clearer view of permission inheritance and location compliance.