cloud-platform-terraform-awsaccounts-iam

Terraform module which holds Cloud Platform team IAM configuration for AWS Accounts. This module configures:

• Account password policies
• Administrator groups
• Team member IAM user accounts
• OIDC providers for general usage (e.g. CircleCI, GitHub Actions)

Usage

module "iam" {
  source = "github.com/ministryofjustice/cloud-platform-terraform-awsaccounts-iam?ref=0.0.1"

  aws_account_name = "cloud-platform-ephemeral-test"
}

Requirements

Name	Version
terraform	>= 1.2.5
aws	>= 4.2.0
tls	>= 4.0.0

Providers

Name	Version
aws	>= 4.2.0
tls	>= 4.0.0

Modules

Name	Source	Version
iam_account	terraform-aws-modules/iam/aws//modules/iam-account	~> 4.24
iam_group_admins_with_policies	terraform-aws-modules/iam/aws//modules/iam-group-with-policies	~> 4.24
iam_user_davidelliott	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_folarin_oyenuga	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_jackstockley	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_jaskaransarkaria	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_kytruong	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_mikebell	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_sablumiah	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_stevewilliams	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_tariq_mahmood	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_tim_cheung	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1
iam_user_tomsmith	terraform-aws-modules/iam/aws//modules/iam-user	4.17.1

Resources

Name	Type
aws_iam_openid_connect_provider.oidc	resource
tls_certificate.oidc	data source

Inputs

Name	Description	Type	Default	Required
aws_account_name	n/a	string	n/a	yes
circleci_organisation_id	CircleCI organisation ID for OIDC	string	n/a	yes

Outputs

No outputs.