UPD: adding iam-user-policy-name variable

2022-09-19 16:04:26 +08:00 · 2022-09-19 16:04:26 +08:00 · 2354b84f84
commit 2354b84f84
parent 9cc5df4dda
3 changed files with 4 additions and 2 deletions
--- a/modules/security_identity_compliance/iam-user/README.md
+++ b/modules/security_identity_compliance/iam-user/README.md
@ -9,6 +9,7 @@ module iam-user {
  default-tags    = local.default-tags
  iam-user-name   = var.iam-user-name
  iam-user-policy = data.aws_iam_policy_document.user-policy.json
+  iam-user-policy-name = "SelfServicePermissions"
  create-access-key = false
  create-password = false
  managed-policy-arns = ["arn:aws:iam::aws:policy/job-function/ViewOnlyAccess"]
--- a/modules/security_identity_compliance/iam-user/main.tf
+++ b/modules/security_identity_compliance/iam-user/main.tf
@ -11,7 +11,7 @@ resource "aws_iam_access_key" "iam-user-access-key" {

 resource "aws_iam_user_policy" "iam-user-policy" {
  count = var.create-group ? 0 : 1
-  name   = "SelfServiceAccess"
+  name   = var.iam-user-policy-name
  user   = aws_iam_user.iam-user.name
  policy = var.iam-user-policy
 }
--- a/modules/security_identity_compliance/iam-user/variables.tf
+++ b/modules/security_identity_compliance/iam-user/variables.tf
@ -20,3 +20,4 @@ variable add-to-groups {
  type = list
  default = []
 }
+variable iam-user-policy-name {}