-
Notifications
You must be signed in to change notification settings - Fork 0
/
main.tf
40 lines (38 loc) · 1015 Bytes
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
resource "aws_organizations_policy" "RestrictBasedonRegion-India" {
name = "RestrictBasedonRegion-India"
content = <<CONTENT
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "DenyAllOutsideEU",
"Effect": "Deny",
"NotAction": [
"iam:*",
"organizations:*",
"route53:*",
"budgets:*",
"waf:*",
"cloudfront:*",
"globalaccelerator:*",
"importexport:*",
"support:*",
"s3:*"
],
"Resource": "*",
"Condition": {
"StringNotEquals": {
"aws:RequestedRegion": [
"ap-south-1"
]
}
}
}
]
}
CONTENT
}
resource "aws_organizations_policy_attachment" "unit" {
policy_id = aws_organizations_policy.RestrictBasedonRegion-India.id
target_id = "370617850610"
}