sa_8001/dsk-iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Terraform - KMS Policy 추가

Browse Source
This commit is contained in:
dsk-minchulahn
2024-01-31 14:03:17 +09:00
parent f3e9a26a95
commit d0589a0de6
1 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
terraform/iam/policies/modules/kms.tf Normal file
View File

@@ -0,0 +1,20 @@
resource "aws_iam_policy" "kms_policy" {
name = "DSK_KeyManagementService"
path = "/"
policy = jsonencode({
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"kms:Decrypt",
"kms:GenerateDataKey"
],
"Resource": [
"arn:aws:kms:ap-northeast-2:508259851457:key/a48b1e88-a9bb-4d86-a481-ef54e2f40452"
]
}
]
})
}