Awesome
terraform-aws-tfaction
Terraform Modules for tfaction (AWS resources)
https://suzuki-shunsuke.github.io/tfaction/docs/config/add-working-directory/#aws-iam-role
Example
module "aws" {
source = "github.com/suzuki-shunsuke/terraform-aws-tfaction"
name = "AWS"
repo = "suzuki-shunsuke/tfaction-example"
main_branch = "main"
s3_bucket_tfmigrate_history_name = "<S3 Bucket Name for tfmigrate hisotry>"
s3_bucket_terraform_state_name = "<S3 Bucket Name for terraform state>"
}
# Attach Policies
resource "aws_iam_role_policy_attachment" "terraform_apply_admin" {
role = module.aws.aws_iam_role_terraform_apply_name
policy_arn = "arn:aws:iam::aws:policy/AdministratorAccess"
}
resource "aws_iam_role_policy_attachment" "terraform_plan_readonly" {
role = module.aws.aws_iam_role_terraform_plan_name
policy_arn = "arn:aws:iam::aws:policy/ReadOnlyAccess"
}
resource "aws_iam_role_policy_attachment" "tfmigrate_plan_readonly" {
role = module.aws.aws_iam_role_tfmigrate_plan_name
policy_arn = "arn:aws:iam::aws:policy/ReadOnlyAccess"
}
resource "aws_iam_role_policy_attachment" "tfmigrate_apply_readonly" {
role = module.aws.aws_iam_role_tfmigrate_apply_name
policy_arn = "arn:aws:iam::aws:policy/ReadOnlyAccess"
}
Requirements
| Name | Version |
|---|---|
| <a name="requirement_terraform"></a> terraform | >= 0.13.1 |
| <a name="requirement_aws"></a> aws | >= 3.63 |
Providers
| Name | Version |
|---|---|
| <a name="provider_aws"></a> aws | >= 3.63 |
Modules
No modules.
Resources
Inputs
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| <a name="input_assume_role_policy_main_conditions"></a> assume_role_policy_main_conditions | n/a | <pre>list(object({<br> test = string<br> variable = string<br> values = list(string)<br> }))</pre> | null | no |
| <a name="input_assume_role_policy_pr_conditions"></a> assume_role_policy_pr_conditions | n/a | <pre>list(object({<br> test = string<br> variable = string<br> values = list(string)<br> }))</pre> | null | no |
| <a name="input_create_oidc_provider"></a> create_oidc_provider | n/a | bool | false | no |
| <a name="input_main_branch"></a> main_branch | n/a | string | "main" | no |
| <a name="input_name"></a> name | n/a | string | n/a | yes |
| <a name="input_repo"></a> repo | n/a | string | n/a | yes |
| <a name="input_s3_bucket_terraform_state_name"></a> s3_bucket_terraform_state_name | n/a | string | "" | no |
| <a name="input_s3_bucket_tfmigrate_history_name"></a> s3_bucket_tfmigrate_history_name | n/a | string | n/a | yes |
Outputs
| Name | Description |
|---|---|
| <a name="output_aws_iam_role_terraform_apply_arn"></a> aws_iam_role_terraform_apply_arn | AWS IAM Role ARN for terraform apply |
| <a name="output_aws_iam_role_terraform_apply_name"></a> aws_iam_role_terraform_apply_name | AWS IAM Role name for terraform apply |
| <a name="output_aws_iam_role_terraform_plan_arn"></a> aws_iam_role_terraform_plan_arn | AWS IAM Role ARN for terraform plan |
| <a name="output_aws_iam_role_terraform_plan_name"></a> aws_iam_role_terraform_plan_name | AWS IAM Role name for terraform plan |
| <a name="output_aws_iam_role_tfmigrate_apply_arn"></a> aws_iam_role_tfmigrate_apply_arn | AWS IAM Role ARN for tfmigrate apply |
| <a name="output_aws_iam_role_tfmigrate_apply_name"></a> aws_iam_role_tfmigrate_apply_name | AWS IAM Role name for tfmigrate apply |
| <a name="output_aws_iam_role_tfmigrate_plan_arn"></a> aws_iam_role_tfmigrate_plan_arn | AWS IAM Role ARN for tfmigrate plan |
| <a name="output_aws_iam_role_tfmigrate_plan_name"></a> aws_iam_role_tfmigrate_plan_name | AWS IAM Role name for tfmigrate plan |
LICENSE
This document is generated by terraform-docs