[英]aws / terraform Iam - inline
所以我想做的是:创建内联策略并将其附加到现有用户?
aws_iam_user 确实创建了,但我想将它附加到现有用户。
谢谢
resource "aws_iam_user" "user" { name = "arthur" } #Create Inline Policies for de-test resource "aws_iam_user_policy" "arthur" { name = "arthur inline" user = aws_iam_user.user.name policy = <<EOF { "Version": "2012-10-17", "Statement": [ { "Sid": "s3inline", "Effect": "Allow", "Action": [ "s3:GetAccountPublicAccessBlock", "s3:ListAllMyBuckets", "s3:ListAccessPoints", "s3:GetBucketLocation" ], "Resource": "*" }, { "Sid": "s3inline", "Effect": "Allow", "Action": [ "s3:GetBucketPublicAccessBlock", "s3:GetBucketPolicyStatus", "s3:ListBucket", "s3:GetBucketAcl" ], "Resource": "arn:aws:s3:::arthur-store" } ] } EOF }
改变这个:
resource "aws_iam_user" "user" {
name = "arthur"
}
对此:
data "aws_iam_user" "user" {
user_name = "arthur"
}
或者,由于您只需要名称,查找用户根本没有多大用处,因此您可以在aws_iam_user_policy中执行此操作:
resource "aws_iam_user_policy" "arthur" {
name = "arthur inline"
user = "arthur"
...
Terraform AWS IAM 角色“inline_policy.0.policy”包含使用 ${file xyz} 和 jsonencode 的无效 JSON 策略
[英]Terraform AWS IAM Role “inline_policy.0.policy” contains an invalid JSON policy using ${file xyz} and jsonencode
terraform managed_policy_arns 问题与 aws_iam_role
[英]terraform managed_policy_arns issue with aws_iam_role
使用 terraform 创建 aws eks 集群时如何使用 iam 角色?
[英]How to use iam role when creating aws eks cluster with terraform?
terraform 中 aws_iam_policy 资源中条件的语法
[英]Syntax for conditions in aws_iam_policy resources in terraform
Aws IAM 组:在 Terraform 上设置对日志组的只读访问
[英]Aws IAM group: Setup readonly access on log group on Terraform
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.