AWS IAM Role security-audit This will create a role for doing security audits, assumeable from source_account_id.
module "group" {
source = " github.com/chanzuckerberg/cztack/aws-iam-group-assume-role?ref=v0.14.0" source_account_id = " ..."
Name
Description
Type
Default
Required
env
Env for tagging and naming. See doc
stringn/a
yes
iam_path
n/a
string"/"no
owner
Owner for tagging and naming. See doc
stringn/a
yes
project
Project for tagging and naming. See doc
stringn/a
yes
role_name
The name of this role.
string"security-audit"no
saml_idp_arn
The AWS SAML IDP arn to establish a trust relationship. Ignored if empty or not provided.
string""no
service
Service for tagging and naming. See doc
stringn/a
yes
source_account_id
The source AWS account to establish a trust relationship. Ignored if empty or not provided. DEPRECATED: Please use source_account_ids.
string""no
source_account_ids
The source AWS account IDs to establish a trust relationship. Ignored if empty or not provided.
set(string)[]no
No output.