terraform-aws-ec2-bastion-server
terraform-aws-ec2-bastion-server copied to clipboard
cloudposse
Add support for additional IAM policies
Have a question? Please checkout our Slack Community or visit our Slack Archive.
Describe the Feature
We are running tasks on our bastion temporarily and need to add S3 permissions.
Expected Behavior
Either a list var additional_iam_policy_arns, or instance_profile_arn if the user wants to use a completely different role.
Use Case
We need some AWS permissions on our bastion
Describe Ideal Solution
see expected behavior
Alternatives Considered
there's probably a better way than performing aws api calls from the bastion, but there may be other use cases where additional IAM policies are useful to others.
Additional Context
Add any other context or screenshots about the feature request here.
Converting from using inline policies to attachments would be great and just adding a flag as to whether the user would like policies auto-created or to create them themselves.
