Skip to content

Latest commit

 

History

History

aws-iam-role-ecs-poweruser

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
 
 
 
 
 
 
 
 
 
 

AWS IAM role for ECS Poweruser

This module will create a role, assumeable by another account, which has ECS Poweruser priviledges.

Example

module "ec2-poweruser" {
  source = "github.com/chanzuckerberg/cztack//aws-iam-role-ecs-poweruser?ref=v0.36.0"

  # The name of the role to create in this account.
  role_name = "..."

  # The ID of the other AWS account which can assume this role.
  source_account_id = "..."
}

Requirements

No requirements.

Providers

Name Version
aws n/a

Modules

Name Source Version
assume_role_policy ../aws-assume-role-policy n/a

Resources

Name Type
aws_iam_policy.secrets resource
aws_iam_role.ecs-poweruser resource
aws_iam_role_policy_attachment.ecr-poweruser resource
aws_iam_role_policy_attachment.ecs-fullaccess resource
aws_iam_role_policy_attachment.secrets resource
aws_iam_policy_document.secrets data source

Inputs

Name Description Type Default Required
env Env for tagging and naming. See doc string n/a yes
iam_path n/a string "/" no
owner Owner for tagging and naming. See doc string n/a yes
project Project for tagging and naming. See doc string n/a yes
role_name n/a string n/a yes
saml_idp_arns The AWS SAML IDP arns to establish a trust relationship. Ignored if empty or not provided. set(string) [] no
service Service for tagging and naming. See doc string n/a yes
source_account_ids The source AWS account IDs to establish a trust relationship. Ignored if empty or not provided. set(string) [] no

Outputs

Name Description
arn n/a