탐색 도움말
가입하기 로그인
AFS
/
xdr-terraform-modules
2
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: 88c084de7d
브랜치 태그
xdr-terraform-m...
/
base
/
qualys_iam_baseaccount
/
main.tf

main.tf 763 B
히스토리 Raw

123456789101112131415161718192021222324252627282930 
  1. data aws_partition this {}
    2. 

  2. 

  3. resource "aws_iam_user" "this" {
    4. 

  4.   name          = "qualys"
    5. 

  5.   path          = "/service_accounts/"
    6. 

  6.   tags          = var.tags
    7. 

  7.   force_destroy = true
    8. 

  8. }
    9. 

  9. 

  10. resource "aws_iam_access_key" "this" {
    11. 

  11.   user    = aws_iam_user.this.name
    12. 

  12.   pgp_key = var.pgp_key
    13. 

  13. }
    14. 

  14. 

  15. resource "aws_iam_user_policy" "assume_role" {
    16. 

  16.   name   = "assume_role"
    17. 

  17.   user   = aws_iam_user.this.name
    18. 

  18.   policy = data.aws_iam_policy_document.assume_role.json
    19. 

  19. }
    20. 

  20. 

  21. data aws_iam_policy_document "assume_role" {
    22. 

  22.   statement {
    23. 

  23.     effect  = "Allow"
    24. 

  24.     actions = ["sts:AssumeRole"]
    25. 

  25.     resources = [
    26. 

  26.       "arn:${data.aws_partition.this.partition}:iam::*:role/QualysConnectorRole",
    27. 

  27.       "arn:${data.aws_partition.this.partition}:iam::*:role/Role_For_QualysEC2Connector",
    28. 

  28.     ]
    29. 

  29.   }
    30. 

  30. }
    31.