diff options
Diffstat (limited to 'doc/user/infrastructure/iac/terraform_state.md')
| -rw-r--r-- | doc/user/infrastructure/iac/terraform_state.md | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/doc/user/infrastructure/iac/terraform_state.md b/doc/user/infrastructure/iac/terraform_state.md index 081e20b158e..876300a7794 100644 --- a/doc/user/infrastructure/iac/terraform_state.md +++ b/doc/user/infrastructure/iac/terraform_state.md @@ -54,12 +54,12 @@ Prerequisites: WARNING: Like any other job artifact, Terraform plan data is viewable by anyone with the Guest role on the repository. -Neither Terraform nor GitLab encrypts the plan file by default. If your Terraform plan -includes sensitive data, like passwords, access tokens, or certificates, you should -encrypt plan output or modify the project visibility settings. We also strongly recommend that you **disable** +Neither Terraform nor GitLab encrypts the plan file by default. If your Terraform `plan.json` or `plan.cache` +files include sensitive data like passwords, access tokens, or certificates, you should +encrypt the plan output or modify the project visibility settings. You should also **disable** [public pipelines](../../../ci/pipelines/settings.md#change-pipeline-visibility-for-non-project-members-in-public-projects) -by setting the artifact's public flag to false (`public: false`). This setting ensures artifacts are -accessible only to GitLab Administrators and project members with the Reporter role and above. +and set the [artifact's public flag to false](../../../ci/yaml/index.md#artifactspublic) (`public: false`). +This setting ensures artifacts are accessible only to GitLab administrators and project members with at least the Reporter role. To configure GitLab CI/CD as a backend: |