Skip to content

Commit be7d379

Browse files
author
Jamie Nelson
committed
Initial commit of policy generator module
1 parent 61056dd commit be7d379

File tree

3 files changed

+38
-40
lines changed

3 files changed

+38
-40
lines changed

main.tf

Lines changed: 0 additions & 40 deletions
Original file line numberDiff line numberDiff line change
@@ -1,23 +1,3 @@
1-
variable "parameter_root_name" {
2-
description = "The prefix or root parameter that you want to allow access to"
3-
default = ""
4-
}
5-
6-
variable "kms_key" {
7-
description = "The arn of the KMS key that you want to allow access to. If empty it uses a wildcard resource. `*` "
8-
default = ""
9-
}
10-
11-
variable "region" {
12-
description = "The region of the parameter store value that you want to allow access to. If none supplied, it uses the current region of the provider."
13-
default = ""
14-
}
15-
16-
variable "account_id" {
17-
description = "The account id of the parameter store you want to allow access to. If none supplied, it uses the current account id of the provider. "
18-
default = ""
19-
}
20-
211
data "aws_region" "default" {}
222
data "aws_caller_identity" "default" {}
233

@@ -84,23 +64,3 @@ data "aws_iam_policy_document" "manage_kms_store" {
8464
]
8565
}
8666
}
87-
88-
output "read_parameter_store_policy" {
89-
value = "${data.aws_iam_policy_document.read_parameter_store.json}"
90-
}
91-
92-
output "write_parameter_store_policy" {
93-
value = "${data.aws_iam_policy_document.write_parameter_store.json}"
94-
}
95-
96-
output "manage_kms_store_policy" {
97-
value = "${data.aws_iam_policy_document.manage_kms_store.json}"
98-
}
99-
100-
output "manage_parameter_store_policy" {
101-
value = "${data.aws_iam_policy_document.manage_parameter_store.json}"
102-
}
103-
104-
output "put_xray_trace_policy" {
105-
value = "${data.aws_iam_policy_document.put_xray_trace.json}"
106-
}

outputs.tf

Lines changed: 19 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,19 @@
1+
output "read_parameter_store_policy" {
2+
value = "${data.aws_iam_policy_document.read_parameter_store.json}"
3+
}
4+
5+
output "write_parameter_store_policy" {
6+
value = "${data.aws_iam_policy_document.write_parameter_store.json}"
7+
}
8+
9+
output "manage_kms_store_policy" {
10+
value = "${data.aws_iam_policy_document.manage_kms_store.json}"
11+
}
12+
13+
output "manage_parameter_store_policy" {
14+
value = "${data.aws_iam_policy_document.manage_parameter_store.json}"
15+
}
16+
17+
output "put_xray_trace_policy" {
18+
value = "${data.aws_iam_policy_document.put_xray_trace.json}"
19+
}

variables.tf

Lines changed: 19 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,19 @@
1+
variable "parameter_root_name" {
2+
description = "The prefix or root parameter that you want to allow access to"
3+
default = ""
4+
}
5+
6+
variable "kms_key" {
7+
description = "The arn of the KMS key that you want to allow access to. If empty it uses a wildcard resource. `*` "
8+
default = ""
9+
}
10+
11+
variable "region" {
12+
description = "The region of the parameter store value that you want to allow access to. If none supplied, it uses the current region of the provider."
13+
default = ""
14+
}
15+
16+
variable "account_id" {
17+
description = "The account id of the parameter store you want to allow access to. If none supplied, it uses the current account id of the provider. "
18+
default = ""
19+
}

0 commit comments

Comments
 (0)