add policy implementation

README.md

@@ -43,6 +43,7 @@ You can use this in your terraform template with the following steps.
 | logging_isenable | The flag of using logging enable container. Defaults true  | string | "true" | no |
 | referer_config | The configuration of referer  | list | [] | no |
 | lifecycle_rule | A configuration of object lifecycle management | list | [] | no |
+| policy | JSON formatted bucket policy text to attach to the bucket | string | "" | no |
 
 
 ## Outputs

examples/create_oss_bucket/main.tf

@@ -39,5 +39,14 @@ module "oss-bucket" {
         date = "2018-01-12"
       }]
     },
-  ]
+  ],
+  policy = <<POLICY
+  {"Statement":
+      [{"Action":
+          ["oss:PutObject", "oss:GetObject", "oss:DeleteBucket"],
+        "Effect":"Allow",
+        "Resource":
+            ["acs:oss:*:*:*"]}],
+   "Version":"1"}
+  POLICY
 }

main.tf

@@ -6,4 +6,5 @@ resource "alicloud_oss_bucket" "create_new_bucket" {
   logging_isenable = "${var.logging_isenable}"
   referer_config   = "${var.referer_config}"
   lifecycle_rule   = "${var.lifecycle_rule}"
+  policy           = "${var.policy}"
 }

variables.tf

@@ -31,3 +31,8 @@ variable "lifecycle_rule" {
   type    = "list"
   default = []
 }
+
+variable "policy" {
+  type    = "string"
+  default = ""
+}