feat(DMVP-5181): Add IAM Role module

dasmeta · Sep 24, 2024 · 793e5bb · 793e5bb
1 parent 2235c0e
commit 793e5bb
Show file tree

Hide file tree

Showing 2 changed files with 20 additions and 1 deletion.
diff --git a/modules/role/main.tf b/modules/role/main.tf
@@ -49,7 +49,7 @@ resource "aws_iam_role" "aws-role" {
   assume_role_policy = data.aws_iam_policy_document.assume_role_policy.json
 }
 
-resource "aws_iam_role_policy_attachment" "AWSRole" {
+resource "aws_iam_role_policy_attachment" "awsrole" {
   policy_arn = aws_iam_policy.this.arn
   role       = aws_iam_role.aws-role.name
 }
diff --git a/modules/role/tests/without-trust-relationship/main.tf b/modules/role/tests/without-trust-relationship/main.tf
@@ -0,0 +1,19 @@
+module "test" {
+  source = "../../"
+
+  name        = "test"
+  description = "test-role"
+
+  policy = [
+    {
+      actions   = ["s3:*", "s3-object-lambda:*"]
+      resources = ["*"]
+    },
+    {
+      actions   = ["sqs:*"]
+      resources = ["*"]
+    }
+  ]
+  trust_relationship = []
+
+}