terraform/website/source/docs/providers/aws/r/iam_policy.html.markdown

1.5 KiB

layout page_title sidebar_current description
aws AWS: aws_iam_policy docs-aws-resource-iam-policy Provides an IAM policy.

aws_iam_policy

Provides an IAM policy.

resource "aws_iam_policy" "policy" {
    name = "test_policy"
    path = "/"
    description = "My test policy"
    policy = <<EOF
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "ec2:Describe*"
      ],
      "Effect": "Allow",
      "Resource": "*"
    }
  ]
}
EOF
}

Argument Reference

The following arguments are supported:

  • description - (Optional) Description of the IAM policy.
  • name - (Optional, Forces new resource) The name of the policy.
  • name_prefix - (Optional, Forces new resource) Creates a unique name beginning with the specified prefix. Conflicts with name.
  • path - (Optional, default "/") Path in which to create the policy. See IAM Identifiers for more information.
  • policy - (Required) The policy document. This is a JSON formatted string. The heredoc syntax, file function, or the aws_iam_policy_document data source are all helpful here.

Attributes Reference

The following attributes are exported:

  • id - The policy's ID.
  • arn - The ARN assigned by AWS to this policy.
  • description - The description of the policy.
  • name - The name of the policy.
  • path - The path of the policy in IAM.
  • policy - The policy document.