Skip to content
/ terraform-aws-ops-role Public

provides an opinionated module to create an admin role for an AWS account with the ability to restrict role assumption to corporate networks

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

MagusDevOps/terraform-aws-ops-role

BranchesTags

Repository files navigation

terraform-aws-ops-role

Usage

module "ops-role" {
  source            = "MagusDevOps/ops-role/aws"
  version           = "x.x.x"
  account_id        = "${var.account_id}"
  ...
}

Providers

The following providers are used by this module:

  • aws

Required Inputs

The following input variables are required:

account_id

Description: AWS account ID

Type: string

namespace

Description: a name that provides a logical grouping of resources

Type: string

prefix

Description: a string that provides a differentiation an environment

Type: string

Optional Inputs

The following input variables are optional (have default values):

additional_tags

Description: A map of additional tags

Type: map

Default: {}

cidr_restrictions

Description: a list of CIDRs that a user can execute this policy from

Type: list

Default:

[
  "0.0.0.0/0"
]

namespace_tag_key

Description: tag key for the namespace variables

Type: string

Default: "namespace"

prefix_tag_key

Description: the prefix tag key defaults to 'environment'

Type: string

Default: "environment"

Outputs

The following outputs are exported:

role_arn

role_name

grant_assumable_policy_arn

group_name

About

provides an opinionated module to create an admin role for an AWS account with the ability to restrict role assumption to corporate networks

Topics

aws terraform iam sts iam-role terraform-aws

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

8 tags

Packages

No packages published

Languages