idp-gsuite
DNXLabs/idp-gsuite/aws
Terraform module for setting up IDP authentication with GSuite SAML.
Install
README
terraform-aws-idp-gsuite   This terraform module sets up an IDP authentication with GSuite SAML. Deploy this module to your IdP account. The following resources will be created: - Identity and Access Management (IAM) role for admin,audit and billing users - Read-Only IAM roles - IAM roles federated to GSuite with SAML - Set Maximum CLIENT/API session duration - The default value is 43200 - Set Gsuite as an IAM SAML provider Usage ``hcl module "idp_account_roles" { source = "git::https://github.com/DNXLabs/terraform-aws-idp-gsuite.git?ref=0.0.2" org_name = "my_organization" } ` Requirements | Name | Version | |------|---------| | terra
Inputs (6)
| Name | Type | Description | Default |
|---|---|---|---|
| org_name | string | Name for this organization (slug) | |
| metadata | string | Metadata provided by GSuite | |
| clients | list(string) | List of clients (external accounts) that this IDP account will allow switching t | [] |
| role_max_session_duration | string | Maximum CLI/API session duration | "43200" |
| client_all_admin_role_names | list(string) | List of admin roles used by clients that this account can assume to | [] |
| extra_roles | list(string) | List of extra roles to create and allow assuming into other accounts | [] |
Outputs (3)
iam_role_admin_arn — ARN for admin IAM roleiam_role_read_only_arn — ARN for read-only IAM rolesaml_provider_arnResources (5)
Topics & Tags
Details
Similar packages
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Azure Verified Pattern Module for Azure Landing Zone
Terraform Azure Verified Resource Module for Key Vault
Terraform module for building and deploying Next.js apps to AWS. Supports SSR (L