doc(module): document assume role policy behavior
All checks were successful
main / test (push) Successful in 53s
All checks were successful
main / test (push) Successful in 53s
This commit is contained in:
parent
3be1738e04
commit
d9848c574e
GPG key ID:
F92E51B86E07177E
1 changed files with 6 additions and 1 deletions
|
|
@ -13,7 +13,7 @@ continuous integration tasks on AWS.
|
|||
module "aws_iam_role" {
|
||||
source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-role?depth=1&ref=1.1.0"
|
||||
|
||||
name = local.name
|
||||
name = local.name
|
||||
policy_statements = jsonencode([
|
||||
{
|
||||
Action = "acm:*"
|
||||
|
|
@ -24,6 +24,11 @@ module "aws_iam_role" {
|
|||
}
|
||||
```
|
||||
|
||||
## Assume role policy
|
||||
|
||||
This role is designed to be used with AWS Identity Center and provisions a trust
|
||||
relationship to the root organization account.
|
||||
|
||||
## Policies
|
||||
|
||||
The IAM role is granted the following permissions on the AWS account:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue