farcasclaudiu/terraform-course
1
0
Fork 0
mirror of https://github.com/farcasclaudiu/terraform-course.git synced 2026-06-22 09:01:59 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
983af3b247c84a89d2e123d2465fb16bd6443beb
terraform-course/codepipeline-demo/kms.tf
T
Edward Viaene cc37d59c87 codepipeline-demo
2020-02-18 18:14:40 +01:00

33 lines
703 B
Terraform
Raw Blame History

#
# kms
#
data "aws_iam_policy_document" "demo-artifacts-kms-policy" {
policy_id = "key-default-1"
statement {
sid = "Enable IAM User Permissions"
effect = "Allow"
principals {
type = "AWS"
identifiers = ["arn:aws:iam::${data.aws_caller_identity.current.account_id}:root"]
}
actions = [
"kms:*",
]
resources = [
"*",
]
}
}
resource "aws_kms_key" "demo-artifacts" {
description = "kms key for demo artifacts"
policy = data.aws_iam_policy_document.demo-artifacts-kms-policy.json
}
resource "aws_kms_alias" "demo-artifacts" {
name = "alias/demo-artifacts"
target_key_id = aws_kms_key.demo-artifacts.key_id
}
Reference in New Issue View Git Blame Copy Permalink