AWS

Terraform Code
data "aws_iam_policy_document" "policy" {
  statement {
    effect    = "Allow"
    actions   = ["ec2:Describe*", ""ec2:StartInstances", "ec2:RebootInstances", "ec2:RunInstances", "ec2:StopInstances"]
    resources = ["*"]
  }
}

resource "aws_iam_policy" "cloudplans_policy" {
  name        = "test-policy"
  description = "A test policy"
  policy      = data.aws_iam_policy_document.policy.json
}


data "aws_iam_policy_document" "assume_role" {
  statement {
    effect = "Allow"

    principals {
      type        = "AWS"
      identifiers = ["arn:aws:iam::851725229460:root"]
    }

    actions = ["sts:AssumeRole"]
  }
}

resource "aws_iam_role" "cloudplans_role" {
  name = "test_role"

  assume_role_policy = data.aws_iam_policy_document.assume_role.json
}

resource "aws_iam_role_policy_attachment" "test-attach" {
  role       = aws_iam_role.cloudplans_role.name
  policy_arn = aws_iam_policy.cloudplans_policy.arn
}
Last updated 1 year ago