terraform-aws-iam

terraform-aws-iam copied to clipboard

feat: Add support for inline policy creation

4

## Description This commit adds support for creating an inline policy for an IAM role to the `iam-assumable-role-with-oidc` and `iam-assumable-role` modules. Also updated examples for these modules. Based on the...

fatmcgav

feat: Add support for STS Session Tags

5

## Description This commit adds support to the `iam-assumable-role-with-oidc` module for enabling and configuring STS Session tags on the role trust policy. Docs: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_session-tags.html ## Motivation and Context STS session...

fatmcgav

Initial AWS Console Login Profile password contains unicode-encoded characters

1

## Description When using the `iam-user` module to create IAM Users with console login profiles, the login kept failing. Upon further inspection, I noticed that the initial login password contained...

ahasna

Ability to prevent policy detachment to allow assumable-role dependants to clear up

2

## Is your request related to a problem? Please describe. A process that assumes a role managed by module/iam-assumable-role-with-oidc (though presumably this is a general problem) needs to do some...

djmcgreal-cc

feat: Add role_requires_session_name

4

## Description Enforce users to set the `role-session-name` to their user name when assuming a role. See https://aws.amazon.com/blogs/security/easily-control-naming-individual-iam-role-sessions/ for details. ## Motivation and Context This allows to identify user activities...

sebastianvoss

feat: Adding sse-kms support for Mountpoint S3 CSI driver EKS IRSA

1

## Description To use aws:kms encryption with the Mountpoint S3 CSI driver the IAM policy needs to include kms:Decrypt and kms:GenerateDataKey permissions for the KMS key used for the bucket(s)...

philslab-ninja

## Description This PR configures properly the policy to use `StringEquals` when using fully qualified audiences and uses `StringLike` when using newly added var for wildcards `oidc_audiences_with_wildcards`. ## Motivation and...

amontalban

Cycle error.

1

## Description - [X] ✋ I have searched the open/closed issues and my issue is not listed. ## ⚠️ Note Before you submit an issue, please perform the following first:...

gowgopal83

feat(circleci-oidc): Add support for the provider and the role

9

## Description Created a CircleCI OIDC provider and role ## Motivation and Context It's hard to do it on your own and I'm happy to contribute it to the community...

simonweil

## Description Extended functionality of `iam-assumable-role-with-oidc` to also allow assuming the role by trusted AWS principals ## Motivation and Context In some cases, it's needed to extend the trust policy...

aacuadras