adyxax/tofu-module-aws-iam-ci-user
1
0
Fork 0
Code Issues Pull requests Releases 2 Activity Actions

chore(infrastructure): remove useless test that requires too much permissions
All checks were successful
main / test (push) Successful in 37s
Details

Browse source
This commit is contained in:
Julien Dessaux 2025-04-25 14:27:14 +02:00
parent 912021f8e5
commit 1fcbd151ed
Signed by: adyxax
GPG key ID: F92E51B86E07177E
2 changed files with 0 additions and 64 deletions
Download patch file Download diff file Expand all files Collapse all files

36
infrastructure/tofu/main.tf
View file

@ -10,41 +10,5 @@ module "aws_iam_ci_user" {
} }
source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-ci-user?depth=1&ref=1.0.1" source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-ci-user?depth=1&ref=1.0.1"
core_policy_statements = jsonencode([
{
Action = "iam:*"
Effect = "Allow"
Resource = "arn:aws:iam::*:role/tftest"
},
])
name = local.name name = local.name
tests_policy_statements = jsonencode([{
Action = "iam:*"
Effect = "Allow"
Resource = "arn:aws:iam::*:role/tftest",
}])
}
resource "aws_iam_policy" "tftest" {
provider = aws.all["root"]
name = "${local.name}-tftest"
policy = jsonencode({
Statement = [{
Action = "iam:*"
Effect = "Allow"
Resource = [
"arn:aws:iam::*:user/tftest",
"arn:aws:iam::*:policy/${local.name}-tftest",
]
}]
Version = "2012-10-17"
})
}
resource "aws_iam_user_policy_attachment" "tftest" {
provider = aws.all["root"]
policy_arn = aws_iam_policy.tftest.arn
user = local.name
} }

28
main.tftest.hcl
View file

@ -1,28 +0,0 @@
provider "aws" {
alias = "core"
profile = "core"
region = "eu-west-3"
}
provider "aws" {
alias = "root"
profile = "root"
region = "eu-west-3"
}
provider "aws" {
alias = "tests"
profile = "tests"
region = "eu-west-3"
}
run "main" {
assert {
condition = output.access_key_id != null
error_message = "invalid iam user access key id"
}
}
variables {
name = "tftest"
}