github-mirrors/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/ysoftdevs/terraform-aws-eks.git synced 2026-01-16 16:47:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
07aba1b7667da1c6df0540564d3bcd011764d4aa
terraform-aws-eks/examples/eks_test_fixture
History
brandoconnor 07aba1b766 first commit
2018-06-06 20:55:23 -07:00
..
certs
first commit
2018-06-06 20:55:23 -07:00
data.tf
first commit
2018-06-06 20:55:23 -07:00
locals.tf
first commit
2018-06-06 20:55:23 -07:00
main.tf
first commit
2018-06-06 20:55:23 -07:00
outputs.tf
first commit
2018-06-06 20:55:23 -07:00
README.md
first commit
2018-06-06 20:55:23 -07:00
variables.tf
first commit
2018-06-06 20:55:23 -07:00

README.md

eks_test_fixture example

This set of templates serves two purposes:

  1. it shows developers how to use the module in a straightforward way as integrated with other terraform community supported modules.
  2. serves as the test infrastructure for CI on the project.

IAM Permissions

The following IAM policy is the minimum needed to execute the module from the test suite.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "Stmt1507789535000",
      "Effect": "Allow",
      "Action": [
        "autoscaling:*LoadBalancerTargetGroups",
        "autoscaling:*AutoScalingGroup",
        "autoscaling:*LaunchConfiguration",
        "autoscaling:*AutoScalingGroups",
        "autoscaling:*LaunchConfigurations",
        "ec2:AllocateAddress",
        "ec2:AssignIpv6Addresses",
        "ec2:AssignPrivateIpAddresses",
        "ec2:AssociateAddress",
        "ec2:AssociateDhcpOptions",
        "ec2:AssociateRouteTable",
        "ec2:AttachInternetGateway",
        "ec2:AttachNetworkInterface",
        "ec2:AuthorizeSecurityGroupEgress",
        "ec2:AuthorizeSecurityGroupIngress",
        "ec2:CreateDhcpOptions",
        "ec2:CreateInternetGateway",
        "ec2:CreateNatGateway",
        "ec2:CreateNetworkAcl",
        "ec2:CreateNetworkAclEntry",
        "ec2:CreateNetworkInterface",
        "ec2:CreateNetworkInterfacePermission",
        "ec2:CreateRoute",
        "ec2:CreateRouteTable",
        "ec2:CreateSecurityGroup",
        "ec2:CreateSubnet",
        "ec2:CreateTags",
        "ec2:CreateVpc",
        "ec2:DeleteDhcpOptions",
        "ec2:DeleteInternetGateway",
        "ec2:DeleteNatGateway",
        "ec2:DeleteNetworkAcl",
        "ec2:DeleteNetworkAclEntry",
        "ec2:DeleteNetworkInterface",
        "ec2:DeleteRoute",
        "ec2:DeleteRouteTable",
        "ec2:DeleteSecurityGroup",
        "ec2:DeleteSubnet",
        "ec2:DeleteTags",
        "ec2:DeleteVpc",
        "ec2:Describe*",
        "ec2:DetachInternetGateway",
        "ec2:DetachNetworkInterface",
        "ec2:DisassociateAddress",
        "ec2:DisassociateRouteTable",
        "ec2:DisassociateSubnetCidrBlock",
        "ec2:DisassociateVpcCidrBlock",
        "ec2:ModifySubnetAttribute",
        "ec2:ModifyVpcAttribute",
        "ec2:ModifyVpcEndpoint",
        "ec2:ReleaseAddress",
        "ec2:RevokeSecurityGroupEgress",
        "ec2:RevokeSecurityGroupIngress",
        "ec2:UpdateSecurityGroupRuleDescriptionsEgress",
        "ec2:UpdateSecurityGroupRuleDescriptionsIngress"
      ],
      "Resource": ["*"]
    },
    {
      "Sid": "Stmt1507789655001",
      "Effect": "Allow",
      "Action": [
        "iam:UploadServerCertificate",
        "iam:DeleteServerCertificate",
        "iam:GetServerCertificate"
      ],
      "Resource": ["*"]
    }
  ]
}
Reference in New Issue View Git Blame Copy Permalink