This repository contains Terraform modules to set up the necessary IAM roles and policies for Lucid AWS imports. These modules include:
- Org Read Delegation Module: Sets up a bastion account (optionally) and delegates read access to the organization
- Bastion Role Module: Sets up an IAM role in the bastion account to assume roles in member accounts for imports.
- Import Role Module: Sets up an IAM role in any AWS account for Lucid to perform imports.
For Org Level Import, all 3 modules are required. For Non-Org Level Import, only Import Role Module is required.
This module sets up a bastion account and delegates read access to the organization, either by creating a new account or using an existing one.
This module creates an IAM role in the bastion account that allows Lucid's AWS import proxy account to assume it and perform imports in member accounts.
This module creates an IAM role that can be assumed by Lucid's proxy AWS import account or the bastion account for performing imports.
| Name | Version |
|---|---|
| terraform | >= 1.4 |
| aws | >= 5.0 |
This project is licensed under the Apache License, Version 2.0. See the LICENSE file for details.