AFS/xdr-terraform-modules @ 5713a943b80bbe5c84f93ad874ee086bb7b01c4b

Fred Damstra [afs macbook] 473052038e Rotates keys for moose-hf, ses_user, and the salt user		3 år sedan
..
README.md	f9f45d0f38 Creates `salt-master-inventory` role and `salt-master` user	4 år sedan
constants.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 år sedan
globals.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 år sedan
inventory_role.tf	82b8d76a53 Updates tfsec/checkov Ignore comments for aws-iam-no-policy-wildcards	3 år sedan
outputs.tf	f9f45d0f38 Creates `salt-master-inventory` role and `salt-master` user	4 år sedan
user.tf	473052038e Rotates keys for moose-hf, ses_user, and the salt user	3 år sedan
vars.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 år sedan

This role is created separate from account standards even though it is required in all accounts. The role must be created after the salt master instance or the trust policy can't be applied.

PREREQUISITES:

Order gets very important in this module, unfortunately. The following sequence is required:

The salt-master instances must be created in C2 test and C2 prod (in govcloud).
This module must be run in commercial C2 prod (The user is created, which is trusted by all others)
This module must be run in commercial C2 test (The user is created, which is trusted by the rest of test)
Then the module can be run in all the other accounts

README.md