Fred Damstra 5c4a96a001 Initial Commit		před 5 roky
..
README.md	5c4a96a001 Initial Commit	před 5 roky
datasources.tf	5c4a96a001 Initial Commit	před 5 roky
locals.tf	5c4a96a001 Initial Commit	před 5 roky
outputs.tf	5c4a96a001 Initial Commit	před 5 roky
policy-mdr_engineer.tf	5c4a96a001 Initial Commit	před 5 roky
policy-mdr_iam_admin.tf	5c4a96a001 Initial Commit	před 5 roky
policy-mdr_readonly_assumerole.tf	5c4a96a001 Initial Commit	před 5 roky
policy-mdr_terraformer.tf	5c4a96a001 Initial Commit	před 5 roky
versions.tf	5c4a96a001 Initial Commit	před 5 roky

Standard IAM Policies module

Defines several well-known IAM policies.

Providers

Name	Version
aws	~2.0?
okta	?

Inputs

(none)

Policies created

Policy Name	Description
mdr_engineer	"legacy" policy. Gives effectively PowerUserAccess but with limitations on iam:PassRole and sts:AssumeRole.
iam_admin_kms	"legacy" policy. Gives several `kms:*` actions related to creating, destroying, and managing keys. Encrypt and Decrypt are noticeably absent.
mdr_engineer_readonly_assumerole	Read only access to AWS console with ability to escalate to Terraformer role
mdr_terraformer	Full read/write access to (almost) everything. Has some limitations around PassRole and AssumeRole