Skip to content

Commit

Permalink
remove old users
Browse files Browse the repository at this point in the history
  • Loading branch information
@david-wirelab
david-wirelab committed Feb 17, 2020
1 parent fa58092 commit 2fb6e00
Show file tree
Hide file tree
Showing 2 changed files with 0 additions and 145 deletions.
141 changes: 0 additions & 141 deletions iam.tf
View file
Original file line number Diff line number Diff line change
@@ -1,144 +1,3 @@
resource "aws_iam_user" "data_ingest_landing" {
name = "data_ingest_landing_user"
}

resource "aws_iam_access_key" "data_ingest_landing_v2" {
user = "${aws_iam_user.data_ingest_landing.name}"
}

resource "aws_iam_group" "data_ingest_landing" {
name = "data_ingest_landing"
}

resource "aws_iam_group_membership" "data_ingest_landing_bucket" {
name = "data_ingest_landing_bucket"

users = ["${aws_iam_user.data_ingest_landing.name}"]

group = "${aws_iam_group.data_ingest_landing.name}"
}

resource "aws_iam_group_policy" "data_ingest_landing" {
group = "${aws_iam_group.data_ingest_landing.id}"

policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Action": "s3:HeadBucket",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.data_landing_bucket.arn}/*"
},
{
"Action": "s3:ListBucket",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.data_landing_bucket.arn}/*"
},
{
"Action": "s3:GetObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.data_landing_bucket.arn}/*"
},
{
"Action": "s3:PutObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.data_landing_bucket.arn}/*"
},
{
"Action": "s3:DeleteObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.data_landing_bucket.arn}/*"
},
{
"Effect": "Allow",
"Action": [
"kms:Encrypt",
"kms:Decrypt",
"kms:ReEncrypt*",
"kms:GenerateDataKey*",
"kms:DescribeKey"
],
"Resource": "${aws_kms_key.data_landing_bucket_key.arn}"
}
]
}
EOF
}

resource "aws_iam_user" "dq_dacc_data_ingest_landing_bucket" {
name = "dq_dacc_data_ingest_landing_bucket_user"
}

resource "aws_iam_group" "dq_dacc_data_ingest_landing_bucket" {
name = "dq_dacc_data_ingest_landing_bucket"
}

resource "aws_iam_group_membership" "dq_dacc_data_ingest_landing_bucket" {
name = "dq_dacc_data_ingest_landing_bucket"

users = ["${aws_iam_user.dq_dacc_data_ingest_landing_bucket.name}"]

group = "${aws_iam_group.dq_dacc_data_ingest_landing_bucket.name}"
}

resource "aws_iam_access_key" "dq_dacc_data_ingest_landing_bucket_v2" {
user = "${aws_iam_user.dq_dacc_data_ingest_landing_bucket.name}"
}

resource "aws_iam_group_policy" "dq_dacc_data_ingest_landing" {
group = "${aws_iam_group.dq_dacc_data_ingest_landing_bucket.id}"

policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Action": "s3:HeadBucket",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}/*"
},
{
"Action": "s3:ListBucket",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}"
},
{
"Action": "s3:GetObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}/*"
},
{
"Action": "s3:ListObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}/*"
},
{
"Action": "s3:PutObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}/*"
},
{
"Action": "s3:DeleteObject",
"Effect": "Allow",
"Resource": "${aws_s3_bucket.dacc_data_landing_bucket.arn}/*"
},
{
"Effect": "Allow",
"Action": [
"kms:Encrypt",
"kms:Decrypt",
"kms:ReEncrypt*",
"kms:GenerateDataKey*",
"kms:DescribeKey"
],
"Resource": "${aws_kms_key.dacc_data_landing_bucket_key.arn}"
}
]
}
EOF
}

resource "aws_iam_role" "mds_rds_iam_role" {
assume_role_policy = <<EOF
{
Expand Down
4 changes: 0 additions & 4 deletions outputs.tf
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,3 @@
output "data_ingest_landing_user_arn" {
value = "${aws_iam_user.data_ingest_landing.arn}"
}

output "data_landing_bucket_arn" {
value = "${aws_s3_bucket.data_landing_bucket.arn}"
}
Expand Down

0 comments on commit 2fb6e00

Please sign in to comment.