HomeTerraform Moduledata-pipeline-iam-policy

data-pipeline-iam-policy

dod-iac/data-pipeline-iam-policy/aws

Terraform Module HCL AWS
Install
module "data-pipeline-iam-policy" {
source = "dod-iac/data-pipeline-iam-policy/aws"
version = "1.0.4"
}
plain text: /constructs/tfmod-dod-iac-data-pipeline-iam-policy-aws/install.txt
⭐ Source on GitHub 📦 Registry page
README

Usage Creates an IAM policy for use in a data pipeline. ``hcl module "data_pipeline_iam_policy" { source = "dod-iac/data-pipeline-iam-policy/aws" name = format("app-%s-data-pipeline-%s", var.application, var.environment) s3_buckets_read = [module.s3_bucket_source.arn] s3_buckets_write = [module.s3_bucket_destination.arn] tags = { Application = var.application Environment = var.environment Automation = "Terraform" } } ` Testing Run all terratest tests using the terratest script. If using aws-vault, you could use aws-vault exec $AWS_PROFILE -- terratest. The AWS_DEFAULT_REGION environment variable is required by the tests. Use TT_SKIP_DESTROY=1 to not destroy the infrastructure created during the tests. Use TT_VERBOSE=1 to log all tests as they are run. Use TT_TIMEOUT to set the timeout for

Inputs (15)
NameTypeDescriptionDefault
namestringThe name of the AWS IAM policy. required
s3_buckets_writelist(string)The ARNs of the AWS S3 buckets that can be written to. Use ["*"] to allow all b[]
ecr_repos_readlist(string)The ARNs of the AWS ECR repos that can be read from. Use ["*"] to allow all rep[]
glue_tables_addlist(object({ database = sList of Glue tables that partitions can be added to.[]
kms_keys_decryptlist(string)The ARNs of the AWS KMS keys that can be used to decrypt data. Use ["*"] to all[]
kms_keys_encryptlist(string)The ARNs of the AWS KMS keys that can be used to encrypt data. Use ["*"] to all[]
athena_workgroups_execlist(string)The ARNs of the AWS Athena workgroups that can be executed. Use ["*"] to allow []
ecr_repos_writelist(string)The ARNs of the AWS ECR repos that can be written to. Use ["*"] to allow all re[]
codecommit_repos_pulllist(string)The ARNs of the AWS CodeCommit repos that can be pulled. Use ["*"] to allow all[]
codecommit_repos_pushlist(string)The ARNs of the AWS CodeCommit repos that can be pushed. Use ["*"] to allow all[]
s3_buckets_readlist(string)The ARNs of the AWS S3 buckets that can be read from. Use ["*"] to allow all bu[]
athena_buckets_resultslist(string)The ARNs of the AWS S3 buckets that store the results of Athena queries. Use ["*[]
athena_tables_execlist(object({ database = sA list of the Glue tables that can be read from during execution of Athena queri[]
athena_buckets_sourcelist(string)The ARNs of the AWS S3 buckets that store the data being queried through Athena.[]
descriptionstringThe description of the AWS IAM policy. Defaults to "The policy for [NAME]."""
Outputs (3)
name — The name of the AWS IAM policy.
arn — The Amazon Resource Name (ARN) of the AWS IAM policy.
id — The id of the AWS IAM policy.
Resources (1)
aws_iam_policy
Topics & Tags
terraformglueawsiams3athena
Details
FrameworkTerraform Module
LanguageHCL
Version1.0.4
Cloud AWS
★ Stars0
Forks1
Total downloads5.4k
Inputs15
Outputs3
Resources1
Examples2
LicenseNOASSERTION
Namespacedod-iac
Updated
Similar packages
caf-enterprise-scale

Azure landing zones Terraform module

★ 952terraform
caf

Terraform supermodule for the Terraform platform engineering for Azure

★ 581terraform
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

★ 210terraform
label

Terraform Module to define a consistent naming convention by (namespace, stage,

★ 702terraform
Tools
⚖ Compare with another construct → 📋 View data schema