viget.sso-access

Terraform module to set up standardized sso access in client accounts

Usage

//TODO: add instructions on usage with the Viget AWS IAM Identity Center see

//TODO: add instructions on setting up a makefile to download release artifacts as module

Requirements

Name Version
terraform >= 1.0
aws >= 4.44.0

Providers

Name Version
aws 4.59.0

Resources

Name Type
aws_iam_role.admin_federation_role resource
aws_iam_role.developer_federation_role resource
aws_iam_role.pm_federation_role resource
aws_iam_role_policy_attachment.admin_federation_role__aws_admin resource
aws_iam_role_policy_attachment.developer_federation_role__aws_poweruser resource
aws_iam_role_policy_attachment.pm_federation_role__aws_billing resource
aws_iam_role_policy_attachment.pm_federation_role__aws_viewer resource
aws_iam_saml_provider.admin resource
aws_iam_saml_provider.developer resource
aws_iam_saml_provider.pm resource
aws_iam_policy_document.admin_saml_assume_role_policy data source
aws_iam_policy_document.developer_saml_assume_role_policy data source
aws_iam_policy_document.pm_saml_assume_role_policy data source

Inputs

Name Description Type Default Required
saml_metadata Saml metadata for providers
object({
admin = string
developer = string
pm = string
})
n/a yes
tags A map of tags to apply to the resources map(string) {} no

Outputs

Name Description
roles Role names and their ARNs for mapping in IAM Identity Center

Author

Nevin Morgan Viget Labs https://www.viget.com