![](/img/trans.png)
[英]Terraform AWS IAM Role “inline_policy.0.policy” contains an invalid JSON policy using ${file xyz} and jsonencode
[英]aws / terraform Iam - inline
所以我想做的是:创建内联策略并将其附加到现有用户?
aws_iam_user 确实创建了,但我想将它附加到现有用户。
谢谢
resource "aws_iam_user" "user" { name = "arthur" } #Create Inline Policies for de-test resource "aws_iam_user_policy" "arthur" { name = "arthur inline" user = aws_iam_user.user.name policy = <<EOF { "Version": "2012-10-17", "Statement": [ { "Sid": "s3inline", "Effect": "Allow", "Action": [ "s3:GetAccountPublicAccessBlock", "s3:ListAllMyBuckets", "s3:ListAccessPoints", "s3:GetBucketLocation" ], "Resource": "*" }, { "Sid": "s3inline", "Effect": "Allow", "Action": [ "s3:GetBucketPublicAccessBlock", "s3:GetBucketPolicyStatus", "s3:ListBucket", "s3:GetBucketAcl" ], "Resource": "arn:aws:s3:::arthur-store" } ] } EOF }
改变这个:
resource "aws_iam_user" "user" {
name = "arthur"
}
对此:
data "aws_iam_user" "user" {
user_name = "arthur"
}
或者,由于您只需要名称,查找用户根本没有多大用处,因此您可以在aws_iam_user_policy
中执行此操作:
resource "aws_iam_user_policy" "arthur" {
name = "arthur inline"
user = "arthur"
...
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.