Terraform - IAM user, role, policies 최신화

2024-01-30 17:46:36 +09:00
parent 886e60ab28
commit f3e9a26a95
11 changed files with 115 additions and 49 deletions
--- a/terraform/iam/users/users.tf
+++ b/terraform/iam/users/users.tf
@@ -0,0 +1,17 @@
+locals {
+  user_policies = flatten([for name, policies in var.iam_users : [for policy in policies.policies : { user = name, policy = policy }]])
+  users = toset([for user in local.user_policies : user.user])
+}
+
+resource "aws_iam_user" "iam_user" {
+  for_each = local.users
+
+  name = each.key
+}
+
+resource "aws_iam_user_policy_attachment" "policy_attachment" {
+  count = length(local.user_policies)
+
+  user       = aws_iam_user.iam_user[local.user_policies[count.index].user].name
+  policy_arn = local.user_policies[count.index].policy
+}