HomeTerraform Modulessm-iam-role

ssm-iam-role

cloudposse/ssm-iam-role/aws

Terraform Module HCL AWS

Terraform module to provision an IAM role with configurable permissions to access SSM Parameter Store

Install
module "ssm-iam-role" {
source = "cloudposse/ssm-iam-role/aws"
version = "0.2.0"
}
plain text: /constructs/tfmod-cloudposse-ssm-iam-role-aws/install.txt
⭐ Source on GitHub 📦 Registry page
README

[![README Header][readme_header_img]][readme_header_link] [![Cloud Posse][logo]](https://cpco.io/homepage) terraform-aws-ssm-iam-role ![Build Status](https://travis-ci.org/cloudposse/terraform-aws-ssm-iam-role) ![Latest Release](https://github.com/cloudposse/terraform-aws-ssm-iam-role/releases/latest) ![Slack Community](https://slack.cloudposse.com) Terraform module to provision an IAM role with configurable permissions to access SSM Parameter Store. --- This project is part of our comprehensive "SweetOps" approach towards DevOps. [ ][share_email] [ ][share_googleplus] [ ][share_facebook] [ ][share_reddit] [ ][share_linkedin] [ ][share_twitter] ![Terraform Open Source Modules][terraform_modules] It's 100% Open Source and licensed under the APACHE2. We literally have [hundreds of terraform

Inputs (13)
NameTypeDescriptionDefault
kms_key_referencestringThe Key ID, Key ARN, Key Alias Name, or Key Alias ARN of the KMS key which will required
ssm_parameterslistList of SSM parameters to apply the actions. A parameter can include a path and required
namespacestringNamespace (e.g. `cp` or `cloudposse`) required
stagestringStage (e.g. `prod`, `dev`, `staging`) required
namestringName (e.g. `app` or `chamber`) required
account_idstringAWS account ID required
assume_role_arnslistList of ARNs to allow assuming the role. Could be AWS services or accounts, Kops required
regionstringAWS Region required
max_session_durationstringThe maximum session duration (in seconds) for the role. Can have a value from 1 3600
ssm_actionslistSSM actions to allow[ "ssm:GetParametersByPath", "ssm:Ge
delimiterstringDelimiter to be used between `namespace`, `stage`, `name` and `attributes`"-"
attributeslistAdditional attributes (e.g. `1`)[]
tagsmapAdditional tags (e.g. map(`BusinessUnit`,`XYZ`){}
Outputs (4)
role_name — The name of the crated role
role_id — The stable and unique string identifying the role
role_arn — The Amazon Resource Name (ARN) specifying the role
role_policy_document — A copy of the IAM policy document (JSON) that grants permissions to this role.
Resources (3)
aws_iam_policyaws_iam_roleaws_iam_role_policy_attachment
Topics & Tags
chamberkube2iamssmroleparameter-storeterraformawsiamkuberneteskmssecretskiamterraform-modulepermissions
Details
FrameworkTerraform Module
LanguageHCL
Version0.2.0
Cloud AWS
★ Stars21
Forks16
Total downloads6.6k
Inputs13
Outputs4
Resources3
LicenseApache-2.0
Namespacecloudposse
Updated
Similar packages
caf-enterprise-scale

Azure landing zones Terraform module

★ 952terraform
caf

Terraform supermodule for the Terraform platform engineering for Azure

★ 581terraform
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

★ 210terraform-module
label

Terraform Module to define a consistent naming convention by (namespace, stage,

★ 702terraform
Tools
⚖ Compare with another construct → 📋 View data schema