test(storage): add tags to terraform resources

hashicorp · Jul 18, 2023 · ac0d2ee · ac0d2ee
1 parent 7cb0805
commit ac0d2ee
Show file tree

Hide file tree

Showing 3 changed files with 24 additions and 3 deletions.
diff --git a/testing/testdata/storage/iam.tf b/testing/testdata/storage/iam.tf
@@ -3,6 +3,7 @@
 
 resource "aws_iam_role" "valid" {
   name = "${random_id.prefix.dec}-valid"
+  tags = local.tags
 
   assume_role_policy = jsonencode({
     Version = "2012-10-17"
@@ -20,7 +21,9 @@ resource "aws_iam_role" "valid" {
 }
 
 resource "aws_iam_policy" "valid" {
-  name        = "${random_id.prefix.dec}-valid"
+  name = "${random_id.prefix.dec}-valid"
+  tags = local.tags
+
   policy = <<EOT
 {
   "Version": "2012-10-17",
@@ -47,6 +50,7 @@ resource "aws_iam_role_policy_attachment" "valid" {
 
 resource "aws_iam_role" "missing_put_obj" {
   name = "${random_id.prefix.dec}-missing-put-obj"
+  tags = local.tags
 
   assume_role_policy = jsonencode({
     Version = "2012-10-17"
@@ -65,7 +69,9 @@ resource "aws_iam_role" "missing_put_obj" {
 
 
 resource "aws_iam_policy" "missing_put_obj" {
-  name        = "${random_id.prefix.dec}-missing-put-obj"
+  name = "${random_id.prefix.dec}-missing-put-obj"
+  tags = local.tags
+
   policy = <<EOT
 {
   "Version": "2012-10-17",
@@ -91,6 +97,7 @@ resource "aws_iam_role_policy_attachment" "missing_put_obj" {
 
 resource "aws_iam_role" "missing_get_obj" {
   name = "${random_id.prefix.dec}-missing-get-obj"
+  tags = local.tags
 
   assume_role_policy = jsonencode({
     Version = "2012-10-17"
@@ -108,7 +115,9 @@ resource "aws_iam_role" "missing_get_obj" {
 }
 
 resource "aws_iam_policy" "missing_get_obj" {
-  name        = "${random_id.prefix.dec}-missing-get-obj"
+  name = "${random_id.prefix.dec}-missing-get-obj"
+  tags = local.tags
+
   policy = <<EOT
 {
   "Version": "2012-10-17",
@@ -143,6 +152,7 @@ resource "aws_iam_user" "test" {
   count         = var.iam_user_count
   name          = random_id.user_name[count.index].dec
   force_destroy = true
+  tags          = local.tags
 }
 
 resource "aws_iam_access_key" "test" {
@@ -159,6 +169,7 @@ resource "aws_iam_user_policy_attachment" "test_s3" {
 resource "aws_iam_policy" "credentials" {
   count = var.iam_user_count
   name  = aws_iam_user.test[count.index].name
+  tags  = local.tags
 
   policy = <<EOF
 {
@@ -194,6 +205,7 @@ resource "random_id" "missing_get_obj" {
 resource "aws_iam_user" "missing_get_obj" {
   name          = random_id.missing_get_obj.dec
   force_destroy = true
+  tags          = local.tags
 }
 
 resource "aws_iam_access_key" "missing_get_obj" {
@@ -215,6 +227,7 @@ resource "random_id" "missing_put_obj" {
 resource "aws_iam_user" "missing_put_obj" {
   name          = random_id.missing_put_obj.dec
   force_destroy = true
+  tags          = local.tags
 }
 
 resource "aws_iam_access_key" "missing_put_obj" {

diff --git a/testing/testdata/storage/s3.tf b/testing/testdata/storage/s3.tf
@@ -5,4 +5,5 @@ resource "aws_s3_bucket" "test" {
   bucket        = random_id.prefix.dec
   force_destroy = true
   acl           = "private"
+  tags          = local.tags
 }
diff --git a/testing/testdata/storage/variable.tf b/testing/testdata/storage/variable.tf
@@ -10,4 +10,11 @@ resource "random_id" "prefix" {
 
 variable "iam_user_count" {
   default = 6
+}
+
+locals {
+  tags = {
+    user_id = split(":", data.aws_caller_identity.current.user_id)[1]
+    repo    = "boundary-plugin-aws" 
+  }
 }