This is mostly used for dev
workflows or testing. The key will be exposed to anyone that can view the configuration file. If using this KMS, consider using boundary config encrypt
to encrypt all but the config
KMS and using an external KMS for config
purposes.
kms "aead" {
purpose = "worker-auth"
aead_type = "aes-gcm"
key = "8fZBjCUfN0TzjEGLQldGY4+iE9AkOvCfjh7+p0GtRBQ="
key_id = "global_worker-auth"
}