Skip to content
/ core-cloud-dynatrace-iam-terraform Public

Terraform module to implement Dynatrace IAM resources.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

UKHomeOffice/core-cloud-dynatrace-iam-terraform

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.github/workflows
.github/workflows
 
 
examples
examples
 
 
groups_and_bindings
groups_and_bindings
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

What does the repository do?

This repository creates the following resources:

  1. Dynatrace IAM groups
  2. Dynatrace IAM policies
  3. Bindings of the policies - both predefined and custom - to the created/configured groups.

What is not implemented?

  1. As required in the ticket, boundaries will not be created by the repository as the functionality is not available through code.
  2. Policies are not created with environment scope as it is a deprecated functionality (as per the terraform documentation). However, the functionality could be achieved through policy statement condition.

Inputs

Please refer to the variables.tf and iam_group_variable_type.tf for details on the input variables.

Outputs

No outputs

Requirements

Name Version
dynatrace ~> 1.0

Providers

Name Version
dynatrace ~> 1.0

Modules

Name Source Version
groups_and_bindings ./groups_and_bindings n/a

Resources

Name Type
dynatrace_iam_policy.env_policy resource

Inputs

Name Description Type Default Required
accountUUID Root account UUID string n/a yes
groups_and_permissions Map containing group name, federated values and policy attachment configuration 
map(object({
    # Refer to :
    #   https://registry.terraform.io/providers/dynatrace-oss/dynatrace/latest/docs/resources/iam_group#federated_attribute_values-1
    # and
    #   https://docs.dynatrace.com/docs/manage/identity-access-management/user-and-group-management/access-group-management
    # for more details
    federated_attribute_values = optional(list(string))
    # Refer to https://registry.terraform.io/providers/dynatrace-oss/dynatrace/latest/docs/resources/iam_policy_bindings_v2 and
    # https://registry.terraform.io/providers/dynatrace-oss/dynatrace/latest/docs/resources/iam_policy
    # for more details.
    # Please note that 'environment' is deprecated from the 'iam_policy'
    # resource and therefore not supported here - only 'account' is supported
    # For documentation on parameters refer to:
    #   https://docs.dynatrace.com/docs/manage/identity-access-management/permission-management/manage-user-permissions-policies/advanced/iam-policy-templating
    attached_policies = optional(map(object({
      policy_parameters = optional(map(string), null)
      policy_metadata   = optional(map(string), null)
      environment       = string
    })), {})
  }))
 {} no
iam_policies Map of policy names and their policy query statement. map(string) n/a yes

Outputs

No outputs.

About

Terraform module to implement Dynatrace IAM resources.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

5 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages