This module will create a IAM user and bucket that can be used for applications requiring an S3 bucket to store backup files.
A IAM policy is also created and attached to the user that allows access only to that bucket.
The service_name input is used in naming these items:
- IAM User: service-{{service_name}}-backup-user
- IAM Policy: service-{{service_name}}-backup-bucket-policy
- Bucket Name: {{service_name}}-backups
| Name | Version |
|---|---|
| aws | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| pgp_key | PGP key to use for secret access key | string |
"" |
no |
| service_name | Name of service to use for user and policy name. This will be used to name the IAM user, policy and bucket. | any |
n/a | yes |
| Name | Description |
|---|---|
| bucket_arn | The arn of the bucket created. |
| iam_user | The IAM user created. |
| iam_user_encrypted_secret | Encrypted Secret for IAM backup user |