Creates a service role allowing assume role by aws services without access keys
No requirements.
| Name | Version |
|---|---|
| aws | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| attach_policies | map(string) of existing policies to attach | map(string) |
{} |
no |
| aws_region | aws region | string |
n/a | yes |
| base_policy | Base policy of trust relationship for assuming this role | string |
n/a | yes |
| custom_policy | custom policy to be applied to role using the EOF syntax | string |
"" |
no |
| description | description of the role | string |
n/a | yes |
| name | name of the role in aws console | string |
n/a | yes |
| path | path of the role in aws console | string |
"/" |
no |
| tags | Tags for resources | map(string) |
{ |
no |
| enable_gcci_boundary | permission boundary toggle | bool |
true |
no |
| Name | Description |
|---|---|
| policy | Policy attached to the role. |
| role | The IAM role |