31 lines
692 B
Markdown
31 lines
692 B
Markdown
# AWS IAM CI user
|
|
|
|
This module creates and manages an IAM user in a root AWS account and its
|
|
corresponding roles in sub-accounts.
|
|
|
|
It provides a default set of policies allowing my Forgejo workflows to run tests
|
|
and continuous integration tasks on AWS.
|
|
|
|
## Usage example
|
|
|
|
``` hcl
|
|
module "aws_iam_ci_user" {
|
|
source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-ci-user?depth=1&ref=1.0.1"
|
|
|
|
core_policy_statements = jsonencode([
|
|
{
|
|
Action = "route53:*"
|
|
Effect = "Allow"
|
|
Resource = "*"
|
|
}
|
|
])
|
|
name = local.name
|
|
tests_policy_statements = jsonencode([
|
|
{
|
|
Action = "acm:*"
|
|
Effect = "Allow"
|
|
Resource = "*"
|
|
},
|
|
])
|
|
}
|
|
```
|