Terraform - IAM - 기본 구성

2024-01-26 16:55:00 +09:00
parent 4307cf5261
commit 33fbacaa2c
9 changed files with 109 additions and 44 deletions
--- a/terraform/iam/users/variables.tf
+++ b/terraform/iam/users/variables.tf
@@ -0,0 +1,44 @@
+variable "aws_region" {
+  default     = "ap-northeast-2"
+}
+
+variable "iam_users" {
+  type = map(object({
+    policies = list(string)
+  }))
+  default = {
+    dsk-devops = {
+      policies = [
+        "arn:aws:iam::aws:policy/AmazonS3FullAccess",
+        "arn:aws:iam::aws:policy/AmazonEC2FullAccess"
+      ]
+    }
+  }
+}
+
+# variable "iam_users" {
+#   type = map(object({
+#     policies = list(string)
+#   }))
+#   default = {
+#     dsk-devops = {
+#       policies = [
+#         "arn:aws:iam::aws:policy/AmazonS3FullAccess",
+#         "arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"
+#       ]
+#     },
+#     dsk-developer = {
+#       policies = ["arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"]
+#     },
+#     dsk-readonly = {
+#       policies = [
+#         "arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"
+#       ]
+#     },
+#     dsk-s3-uploader = {
+#       policies = [
+#         "arn:aws:iam::aws:policy/AmazonS3FullAccess"
+#       ]
+#     }
+#   }
+# }