adyxax/tofu-module-aws-iam-role
1
0
Fork 0
Code Issues Pull requests Releases 2 Activity Actions

doc(module): document assume role policy behavior
All checks were successful
main / test (push) Successful in 53s
Details

Browse source
This commit is contained in:
Julien Dessaux 2025-04-25 14:05:30 +02:00
parent 3be1738e04
commit d9848c574e
Signed by: adyxax
GPG key ID: F92E51B86E07177E
1 changed files with 6 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

7
README.md
View file

@ -13,7 +13,7 @@ continuous integration tasks on AWS.
module "aws_iam_role" { module "aws_iam_role" {
source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-role?depth=1&ref=1.1.0" source = "git::ssh://git@git.adyxax.org/adyxax/tofu-module-aws-iam-role?depth=1&ref=1.1.0"
name = local.name name = local.name
policy_statements = jsonencode([ policy_statements = jsonencode([
{ {
Action = "acm:*" Action = "acm:*"
@ -24,6 +24,11 @@ module "aws_iam_role" {
} }
``` ```
## Assume role policy
This role is designed to be used with AWS Identity Center and provisions a trust
relationship to the root organization account.
## Policies ## Policies
The IAM role is granted the following permissions on the AWS account: The IAM role is granted the following permissions on the AWS account: