#terraform-aws-modules (2023-02)
Terraform Modules
Discussions related to https://github.com/terraform-aws-modules
Archive: https://archive.sweetops.com/terraform-aws-modules/
2023-02-07
I am trying to set up a admin group that requires to have restriction in kms access/usage (some kinda boundaries to the scope of the group permission), however I am confuse between terraform-aws-iam-role and terraform-aws-iam-policy which should I use and how can I restrict the scope of the admin to not have access to the kms service?
2023-02-10
Hello!
Maybe someone can advice how to handle issue,
Im using module cloudposse/label/null to provision tags to resources, but with iam role module cloudposse/iam-role/aws there is tags generated example
+ tags = {
+ "Name" = "some name"
+ "tag1" = "x"
+ "tag2" = "b"
and many mores, but this Name tag is starting with N and terraform apply is failing with some issue that iam role not supporting this tag, any tip how to change from Name to name ?
try to use this variable https://github.com/cloudposse/terraform-null-label/blob/master/variables.tf#L108 - include all tags you want, exclude name
ok, and variables tags and labels_as_tags can be together ?
as Im not sure if I understand it properly, I tried to just labels_as_tags: [] but still all tags appear, how this shall works ? can you advice ?
i’m not sure what’s the issue with labels_as_tags, you can show here your code how you are using it
regarding /iam-role/aws module, maybe try to use this var https://github.com/cloudposse/terraform-aws-iam-role/blob/master/variables.tf#L92
also, it’s strange that it does not accept Name tag, there is a working example here https://github.com/cloudposse/terraform-aws-iam-role/tree/master/examples/complete which uses all the tags, and it gets provisioned on AWS on each PR