Skip to content

questionablefocus/terraform-aws-identity-store-group

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

terraform-aws-identity-store-group

A basic cosmetic Terraform module wrapping aws_identitystore_group and aws_ssoadmin_account_assignment.

Features

  • Cleaner interface to assign permission sets to AWS accounts under a group

Examples

Basic configuration

locals {
  identity_store_id = tolist(data.aws_ssoadmin_instances.all.identity_store_ids)[0]
  sso_instance_arn  = tolist(data.aws_ssoadmin_instances.all.arns)[0]
}

module "example_group" {
  source  = "questionablefocus/identity-store-group/aws"
  version = "1.0.0"

  display_name      = "Example"
  identity_store_id = local.identity_store_id
  sso_instance_arn  = local.sso_instance_arn
}

Assign permission sets to AWS accounts

locals {
  identity_store_id = tolist(data.aws_ssoadmin_instances.all.identity_store_ids)[0]
  sso_instance_arn  = tolist(data.aws_ssoadmin_instances.all.arns)[0]
}

module "example_group" {
  source  = "questionablefocus/identity-store-group/aws"
  version = "1.0.0"

  display_name      = "Example"
  identity_store_id = local.identity_store_id
  sso_instance_arn  = local.sso_instance_arn

  account_assignments = [
    {
      permission_set_arn = aws_ssoadmin_permission_set.example.arn
      account_id         = aws_organizations_account.example.id
    }
  ]
}

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages