-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathawsIAM.tf
60 lines (48 loc) · 1.37 KB
/
awsIAM.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
resource "aws_iam_role" "Admin" {
name = "Admin"
}
resource "aws_iam_policy" "policy" {
name = "test-policy"
description = "A test policy"
policy = #omitted
}
resource "aws_iam_role_policy_attachment" "test-attach" {
role = "${aws_iam_role.role.name}"
policy_arn = "${aws_iam_policy.policy.arn}"
}
resource "aws_iam_role" "PowerUser" {
name = "PowerUser"
}
resource "aws_iam_policy" "policy" {
name = "test-policy"
description = "A test policy"
policy = #omitted
}
resource "aws_iam_role_policy_attachment" "test-attach" {
role = "${aws_iam_role.role.name}"
policy_arn = "${aws_iam_policy.policy.arn}"
}
resource "aws_iam_role" "ReadOnly" {
name = "ReadOnly"
}
resource "aws_iam_policy" "policy" {
name = "test-policy"
description = "A test policy"
policy = #omitted
}
resource "aws_iam_role_policy_attachment" "test-attach" {
role = "${aws_iam_role.role.name}"
policy_arn = "${aws_iam_policy.policy.arn}"
}
resource "aws_iam_saml_provider" "default" {
name = "Okta_Admin"
saml_metadata_document = "${file("admin-metadata.xml")}"
}
resource "aws_iam_saml_provider" "default" {
name = "Okta_PowerUser"
saml_metadata_document = "${file("power-metadata.xml")}"
}
resource "aws_iam_saml_provider" "default" {
name = "Okta_ReadOnly"
saml_metadata_document = "${file("read-metadata.xml")}"
}