adyxax/tofu-module-aws-iam-ci-user
1
0
Fork 0
Code Issues Pull requests Releases 2 Activity Actions
No description
5 commits 1 branch 2 tags 52 KiB
Find a file
Exact
Julien Dessaux 1fcbd151ed
All checks were successful
main / test (push) Successful in 37s
Details
chore(infrastructure): remove useless test that requires too much permissions
2025-04-25 14:27:14 +02:00
.forgejo/workflows feat(module): initial import 2025-04-11 11:14:41 +02:00
infrastructure/tofu chore(infrastructure): remove useless test that requires too much permissions 2025-04-25 14:27:14 +02:00
.gitignore feat(module): initial import 2025-04-11 11:14:41 +02:00
CHANGELOG.md chore(module): upgrade tofu-module-aws-iam-user to 1.1.0 2025-04-12 09:07:54 +02:00
LICENSE feat(module): initial import 2025-04-11 11:14:41 +02:00
main.tf chore(module): upgrade tofu-module-aws-iam-user to 1.1.0 2025-04-12 09:07:54 +02:00
outputs.tf feat(module): initial import 2025-04-11 11:14:41 +02:00
providers.tf feat(module): initial import 2025-04-11 11:14:41 +02:00
README.md chore(module): upgrade tofu-module-aws-iam-role to 1.1.0 2025-04-12 09:07:50 +02:00
variables.tf feat(module): initial import 2025-04-11 11:14:41 +02:00

README.md

AWS IAM CI user

This module creates and manages an IAM user in a root AWS account and its corresponding roles in sub-accounts.

It provides a default set of policies allowing my Forgejo workflows to run tests and continuous integration tasks on AWS.

Usage example

module "aws_iam_ci_user" {
  source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-ci-user?depth=1&ref=1.0.1"

  core_policy_statements = jsonencode([
    {
      Action   = "route53:*"
      Effect   = "Allow"
      Resource = "*"
    }
  ])
  name = local.name
  tests_policy_statements = jsonencode([
    {
      Action   = "acm:*"
      Effect   = "Allow"
      Resource = "*"
    },
  ])
}