StratusGrid/terraform-aws-terraform-state-s3-bucket-centralized-with-roles
This is intended to be used by an organization for all of their own accounts. This does not protect access to DynamoDB locking of other accounts, it only restricts access S3 paths for each account. This restriction is put in place by creating a unique role for each account, then creating an assumerole policy that trusts the corresponding account to assume it.
HCLApache-2.0
Issues
- 0
[NOT ABUG] Why all those KMS keys?
#14 opened by notorand-it - 0
- 1
Credentials in plaintext
#5 opened by chrischildresssg