-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathvars-aws-accounts.auto.tfvars
48 lines (47 loc) · 1.14 KB
/
vars-aws-accounts.auto.tfvars
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
aws_permissions_sets = {
readonly = {
name = "ReadOnlyAccess"
policyArn = "arn:aws:iam::aws:policy/ReadOnlyAccess"
},
poweruser = {
name = "PowerUserAccess"
policyArn = "arn:aws:iam::aws:policy/PowerUserAccess"
},
administrator = {
name = "AdministratorAccess"
policyArn = "arn:aws:iam::aws:policy/AdministratorAccess"
},
s3reader = {
name = "S3ReadOnly"
customPolicy = [
{
actions = ["s3:ListAllMyBuckets"]
resources = ["arn:aws:s3:::*"]
},
{
actions = ["s3:GetObject*"]
resources = ["arn:aws:s3:::*"]
}
]
}
}
aws_accounts_permissions = {
"19987514194" = {
"admins" = "administrator"
"tech_leaders" = "poweruser"
"developers" = "readonly"
"readers" = "readonly"
},
"1191587168432" = {
"admins" = "administrator"
"tech_leaders" = "poweruser"
"developers" = "poweruser"
"readers" = "readonly"
}
"13216842425" = {
"admins" = "administrator"
"tech_leaders" = "readonly"
"developers" = "readonly"
"readers" = "readonly"
}
}