Terraform module to create policies with optional assignments and exemptions creation. The module supports a file based approach compatible with the default azure policy definition files.
Type of resources are supported:
- Policy Definition
- Management Group Policy Assignment
- Subscription Policy Assignment
- Resource Group Policy Assignment
- Resource Policy Assignment
- Management Group Policy Exemption
- Subscription Policy Exemption
- Resource Group Policy Exemption
- Resource Policy Exemption
.
├── main.tf
├── variables.tf
├── policy_definitions/
│ ├── policy1.json
│ └── policy2.json
└── policy_assignments/
└── policy_assignment1.json
For more information on the structure of the role assignment and policy definition files follow these references: