This page explains how to use the Terraform Cloud ID Token Workspace ID identifier to uniquely identify Terraform workloads running on Terraform Cloud (TFC) using a Terraform Cloud ID Token.
Understanding the Terraform Cloud ID token workspace ID
Section titled “Understanding the Terraform Cloud ID token workspace ID”When Terraform Cloud executes runs, it can issue an OIDC-compliant identity token that includes an terraform_workspace_id claim.
This value uniquely identifies the Terraform Cloud workspace under which the workload runs.
Aembit uses this value to associate a Terraform run with a specific Client Workload.
For example, an workspace ID might look like: ws-mbsd5E3Ktt5Rg2Xm
Applicable deployment type
Section titled “Applicable deployment type”Aembit supports this identifier only when you use the Aembit Terraform provider.
Create a Client Workload with a Terraform Cloud ID Token identifier
Section titled “Create a Client Workload with a Terraform Cloud ID Token identifier”To configure a Client Workload using the Terraform Cloud ID Token identifier, follow these steps:
-
Log into your Aembit Tenant.
-
Click Client Workloads in the left nav pane.
-
Click New, revealing the Client Workload pop out menu.
-
Enter the Name and optional Description for the Client Workload.
-
Under Client Identification, select Terraform Cloud ID Token Workspace ID.
For Value, enter the Terraform Cloud Workspace ID associated with the workload.
For example:
ws-mbsd5E3Ktt5Rg2Xm -
Click Save.
Aembit displays the new Client Workload on the Client Workloads page.
Find Terraform cloud workspace ID
Section titled “Find Terraform cloud workspace ID”- Log into Terraform Cloud.
- Choose your organization.
- In the left navigation menu, click Workspaces.
- Choose your workspace.
- The top of the page displays the Workspace ID, labeled as ID.