xpk/ZonalShiftLab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
ZonalShiftLab/modules/iam-role-v2/README.md
T
KenF bc71da905f NEW: Initial commit 
Terraform modules for AWS Zonal Shift demo
2025-05-17 22:10:34 +08:00

2.2 KiB
Raw Permalink Blame History

Inline policy for IAM role is not supported by this module. Use managed policies instead.

When trusted-entity is provided as an AWS service name (e.g ec2.amazonaws.com), the assume role policy will be generated. Otherwise, the trusted-entity variable is assumed to be a json-encoded policy. Assume role policy will be set with the json-encoded string. See examples.

Requirements

Name Version
terraform >= 1.3.0
aws >= 5.4.0

Providers

Name Version
aws >= 5.4.0

Modules

No modules.

Resources

Name Type
aws_iam_instance_profile.ip resource
aws_iam_policy.p resource
aws_iam_role.r resource
aws_iam_role_policy_attachment.pa resource

Inputs

Name Description Type Default Required
create-instance-profile Determines whether instance profile will be created bool false no
description Description of IAM role string n/a yes
path Path of IAM role. Defaults to /Customer/ string "/Customer/" no
policies Map of policies to be created and attached 
map(
    object(
      {
        description = string
        policy      = string
      }
    )
  )
 {} no
role-name Name of IAM role string n/a yes
trusted-entity AWS service allowed to assume this role or a full assume role policy string n/a yes

Outputs

Name Description
instance-profile-arn ARN of IAM instance profile
name Name of IAM role
profile-name Name of IAM instance profile
role-arn IAM role ARN

Authorship

This module was developed by KF.

Reference in New Issue View Git Blame Copy Permalink