Skip to content

autoclouddev/terraform-aws-autocloud-access-role

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits

docs

docs

 
 

templates/iam

templates/iam

 
 

.gitignore

.gitignore

 
 

.pre-commit-config.yaml

.pre-commit-config.yaml

 
 

.terraform-docs.yml

.terraform-docs.yml

 
 

.terraformignore

.terraformignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

main.tf

main.tf

 
 

outputs.tf

outputs.tf

 
 

variables.tf

variables.tf

 
 

versions.tf

versions.tf

 
 

Repository files navigation

AutoCloud AWS Access Role Module

Overview

This module provisions an AWS IAM Role granting cross account read-only access rights for AutoCloud's services to ingest your infrastructure.

Refer to the "my account" section of the application or contact your account represetative to obtain the AutoCloud organization ID for your account.

Requirements

Name Version
terraform >= 0.12.6

Providers

Name Version
aws n/a

Modules

No modules.

Resources

Name Type
aws_iam_policy.autocloud_access_role_policies resource
aws_iam_role.autocloud_access_role resource
aws_iam_role_policy_attachment.autocloud_access_role_policy_attachments resource
aws_iam_policy_document.autocloud_access_role_assume_policy data source

Inputs

Name Description Type Default Required
autocloud_organization_id AutoCloud organization ID string n/a yes
additional_policy_arns ARNs for any additional IAM policies to attach to the role list(string) [] no
description Description for the IAM role string "AutoCloud cross-account access role" no
enabled Whether or not to create the IAM role bool true no
force_detach_policies Specifies to force detaching any policies the role has before destroying it bool false no
iam_role_name Name of the IAM role string "AutoCloudReadOnly" no
max_session_duration The maximum session duration (in seconds) that you want to set for the role number 3600 no
path Path of the IAM role string "/" no
permissions_boundary The ARN of the policy that is used to set the permissions boundary for the role string "" no
policy_name_capitalize Whether or not to capitalize policy name components when generating IAM policy names, defaults to true, capitlize bool true no
policy_name_delimiter Delimiter used when generating the IAM policy names, defaults to null string, no delimiter string "" no
tags Key-value map of tags for the IAM role map(string) {} no
trusted_accounts A list of the AWS account numbers that are allowed to assume this role, defaults to AutoCloud's SaaS accounts list(string) [] no

Outputs

Name Description
arn The Amazon Resource Name (ARN) specifying the role
create_date The creation date of the IAM role
description The description of the role
external_id External ID for the role
id The name of the role
name The name of the role
policy_arns A list of ARNs for the policies attached to the role
unique_id The stable and unique string identifying the role

About

AWS IAM Role provisioning cross-account access for AutoCloud

Topics

autocloud

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

2 stars

Watchers

4 watching

Forks

2 forks
Report repository

Releases

6 tags

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages