Support map users and roles to multiple groups (#424)

* Support map users and roles to multiple groups * Simplify code by rename `user_arn` to `userarn`, `role_arn` to `rolearn` * Next version should be 6.x because PR this is a breaking change. * Update example variables.tf * Change indent to 2 * Fix map-aws-auth.yaml maybe invalid yaml.
2026-03-25 02:41:03 +01:00 · 2019-08-19 22:15:01 +08:00
parent b8b3b5820e
commit 8580b67813
8 changed files with 42 additions and 66 deletions
--- a/variables.tf
+++ b/variables.tf
@@ -62,14 +62,22 @@ variable "map_accounts" {

 variable "map_roles" {
  description = "Additional IAM roles to add to the aws-auth configmap. See examples/basic/variables.tf for example format."
-  type        = list(map(string))
-  default     = []
+  type = list(object({
+    rolearn  = string
+    username = string
+    groups   = list(string)
+  }))
+  default = []
 }

 variable "map_users" {
  description = "Additional IAM users to add to the aws-auth configmap. See examples/basic/variables.tf for example format."
-  type        = list(map(string))
-  default     = []
+  type = list(object({
+    userarn  = string
+    username = string
+    groups   = list(string)
+  }))
+  default = []
 }

 variable "subnets" {