-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathadd-developer-user.tf
More file actions
36 lines (32 loc) · 934 Bytes
/
add-developer-user.tf
File metadata and controls
36 lines (32 loc) · 934 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# * Make sure to remove the access keys from the eks users before destroying the resources.
resource "aws_iam_user" "developer" {
name = "developer"
}
resource "aws_iam_policy" "developer_policy_eks" {
name = "developer_policy_eks"
description = "Developer policy for EKS"
policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"eks:DescribeCluster",
"eks:ListClusters"
],
"Resource": "*"
}
]
}
EOF
}
resource "aws_iam_user_policy_attachment" "developer_policy_eks" {
user = aws_iam_user.developer.name
policy_arn = aws_iam_policy.developer_policy_eks.arn
}
resource "aws_eks_access_entry" "developer" {
cluster_name = aws_eks_cluster.eks.name
principal_arn = aws_iam_user.developer.arn
kubernetes_groups = ["my-viewer"]
}