TERRAFORM.md

Requirements

Name	Version
terraform	~> 1
aws	>= 4, < 6
tls	>= 4, < 5

Providers

Name	Version
aws	4.54.0
tls	4.0.4

Modules

No modules.

Resources

Name	Type
aws_iam_openid_connect_provider.provider	resource
aws_iam_role.role	resource
aws_iam_role_policy_attachment.admin	resource
aws_iam_role_policy_attachment.custom	resource
aws_iam_role_policy_attachment.read_only	resource
aws_iam_openid_connect_provider.provider	data source
aws_iam_policy_document.assume_role	data source
aws_partition.current	data source
tls_certificate.provider	data source

Inputs

Name	Description	Type	Default	Required
attach_admin_policy	Enable attachment of the AdministratorAccess policy	bool	false	no
attach_read_only_policy	Enable attachment of the ReadOnly policy	bool	true	no
create_oidc_provider	Enable creation of the OIDC provider	bool	true	no
enabled	Enable creation of resources	bool	true	no
force_detach_policies	Force detachment of policies attached to the IAM role	string	false	no
iam_role_name	Name of the IAM role	string	"terraform-cloud"	no
iam_role_path	Path to the IAM role	string	"/"	no
iam_role_permissions_boundary	ARN of the permissions boundary to be used by the IAM role	string	""	no
iam_role_policy_arns	List of IAM policy ARNs to attach to the IAM role	list(string)	[]	no
max_session_duration	Maximum session duration in seconds	number	3600	no
organisation	Terraform Cloud Organisation name	string	n/a	yes
projects	List of Workspaces and run_phase or patterns	list(object({ project = string run_phase = string workspaces = list(string) }))	[ { "project": null, "run_phase": null, "workspaces": null } ]	no
provider_client_id_list	A list of client IDs (also known as audiences)	list(string)	[ "aws.workload.identity" ]	no
tags	Map of tags to be applied to all resources	map(string)	{}	no
url	URL of identity provider	string	"app.terraform.io"	no

Outputs

Name	Description
projects	List of Terraform Cloud projects
role_arn	AWS Role ARN
role_id	AWS Role ID