This terraform module creates configuration for session manager preferences or logging.
- Description
- Table of Content
- Dependencies
- Terraform Version
- Requirements
- Providers
- Modules
- Resources
- Inputs
- Outputs
- Contributing
- Authors
- License
This Terraform module have no dependencies to another modules
This module was created on 03/14/2019. The latest stable version of Terraform which this module tested working is Terraform 0.13.7 on 17/09/2021
| Name | Version |
|---|---|
| terraform | >= 0.13 |
| aws | >= 1.36.0 |
| Name | Version |
|---|---|
| aws | >= 1.36.0 |
No modules.
| Name | Type |
|---|---|
| aws_cloudwatch_log_group.this | resource |
| aws_iam_policy.this | resource |
| aws_s3_bucket.this | resource |
| aws_s3_bucket_policy.this | resource |
| aws_s3_bucket_public_access_block.this | resource |
| aws_ssm_document.this | resource |
| aws_caller_identity.current | data source |
| aws_iam_policy_document.s3_bucket | data source |
| aws_iam_policy_document.session_manager | data source |
| aws_iam_role.s3_delete_allowed_role | data source |
| aws_region.current | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| environment | environment where this infrastructure reside. | string |
n/a | yes |
| product_domain | product domain who owns this SSM Session Manager Configuration | string |
n/a | yes |
| s3_bucket_description | description for this bucket. | string |
"s3 bucket to store SSM session manager logs" |
no |
| s3_bucket_prefix | (Optional) To write output to a sub-dir, enter a sub-dir name. | string |
"" |
no |
| s3_delete_permission_role_name | AWS IAM role name that given access to delete the s3 bucket/object(s) | string |
"SuperAdmin" |
no |
| s3_enable_expiration | You need to set this variable to true if you want to set s3_expiration_days | bool |
false |
no |
| s3_enable_versioning | Enable versioning for this bucket | string |
"true" |
no |
| s3_expiration_days | Number of days to automate logs removal from s3 bucket | number |
365 |
no |
| s3_sse_algorithm | Encryption algorithm used for this bucket | string |
"AES256" |
no |
| session_manager_document_name | The name of SSM document for session manager, this default name is the one allowed by AWS | string |
"SSM-SessionManagerRunShell" |
no |
| ssm_document_description | description for ssm document | string |
"document to hold regional session manager preferences" |
no |
| Name | Description |
|---|---|
| iam_policy_arn | the arn of iam policy for allowing session manager access |
| iam_policy_name | the name of iam policy for allowing session manager access |
| s3_bucket_name | the name of s3 bucket |
| ssm_document_name | the name of ssm document for session manager preferences |
This module accepting or open for any contributions from anyone, please see the CONTRIBUTING.md for more detail about how to contribute to this module.
This module is under Apache License 2.0 - see the LICENSE file for details.