Usage

To use this module in your Terraform, refer to the below module example:

module "aws_iam_oidc" {
  source = "git::https://github.com/dicomgrid/pt-modules.git?ref=null"

  # See inputs below for additional required parameters
}

Attributes

Requirements

Name	Version
terraform	>= 1.0
aws	>= 4.0
tls	>= 3.0

Providers

Name	Version
aws	>= 4.0

Modules

No modules.

Resources

Name	Type
aws_iam_role.this	resource
aws_iam_role_policy_attachment.this	resource
aws_caller_identity.current	data source
aws_iam_policy_document.this	data source
aws_partition.current	data source

Inputs

Name	Description	Type	Default	Required
audience	Audience to use for OIDC role. Defaults to sts.amazonaws.com for use with the official AWS GitHub action	string	"sts.amazonaws.com"	no
description	IAM Role description	string	null	no
force_detach_policies	Whether policies should be detached from this role when destroying	bool	true	no
max_session_duration	Maximum CLI/API session duration in seconds between 3600 and 43200	number	null	no
name	Name of IAM role	string	null	no
name_prefix	IAM role name prefix	string	null	no
path	Path of IAM role	string	"/"	no
policies	Policies to attach to the IAM role in {'static_name' = 'policy_arn'} format	map(string)	{}	no
provider_url	The URL of the identity provider. Corresponds to the iss claim	string	"token.actions.githubusercontent.com"	no
subjects	List of GitHub OIDC subjects that are permitted by the trust policy. You do not need to prefix with repo: as this is provided. Example: ['my-org/my-repo:*', 'octo-org/octo-repo:ref:refs/heads/octo-branch']	list(string)	[]	no
tags	A map of tags to add to the resources created	map(any)	{}	no

Outputs

No outputs.

Changelog