48 lines
1.2 KiB
HCL
48 lines
1.2 KiB
HCL
variable "aws_region" {
|
|
default = "ap-northeast-2"
|
|
}
|
|
|
|
variable "iam_users" {
|
|
type = map(object({
|
|
policies = list(string)
|
|
}))
|
|
default = {
|
|
dsk-devops = {
|
|
policies = [
|
|
"arn:aws:iam::508259851457:policy/DSK_LambdaExecute",
|
|
"arn:aws:iam::aws:policy/AmazonS3FullAccess",
|
|
"arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess",
|
|
"arn:aws:iam::aws:policy/SecurityAudit",
|
|
"arn:aws:iam::aws:policy/AWSWAFReadOnlyAccess",
|
|
"arn:aws:iam::aws:policy/AmazonElasticFileSystemReadOnlyAccess"
|
|
]
|
|
}
|
|
}
|
|
}
|
|
|
|
# variable "iam_users" {
|
|
# type = map(object({
|
|
# policies = list(string)
|
|
# }))
|
|
# default = {
|
|
# dsk-devops = {
|
|
# policies = [
|
|
# "arn:aws:iam::aws:policy/AmazonS3FullAccess",
|
|
# "arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"
|
|
# ]
|
|
# },
|
|
# dsk-developer = {
|
|
# policies = ["arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"]
|
|
# },
|
|
# dsk-readonly = {
|
|
# policies = [
|
|
# "arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess"
|
|
# ]
|
|
# },
|
|
# dsk-s3-uploader = {
|
|
# policies = [
|
|
# "arn:aws:iam::aws:policy/AmazonS3FullAccess"
|
|
# ]
|
|
# }
|
|
# }
|
|
# } |