web/git
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: moved completely over to this repository

Browse Source
This commit is contained in:
Maxim Hutz
2025-01-12 02:25:31 -05:00
parent 9e806d2f60
commit eec96b743a
13 changed files with 254 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
terraform/iam.tf
View File

@@ -2,7 +2,7 @@ data "aws_s3_bucket" "storage_bucket" {
bucket = var.boot_bucket
}
data "aws_iam_policy_document" "gitea_bool_policy" {
data "aws_iam_policy_document" "boot" {
statement {
effect = "Allow"
actions = ["s3:*", "s3-object-lambda:*"]
@@ -10,22 +10,19 @@ data "aws_iam_policy_document" "gitea_bool_policy" {
}
}
resource "aws_iam_policy" "gitea_boot_policy" {
resource "aws_iam_policy" "boot" {
name = "${var.boot_role}Policy"
description = "The policy that manages the Gitea Boot."
policy = data.aws_iam_policy_document.gitea_bool_policy.json
policy = data.aws_iam_policy_document.boot.json
}
resource "aws_iam_user" "gitea_boot_user" {
module "boot_user" {
source = "terraform-aws-modules/iam/aws//modules/iam-user"
version = "5.52.2"
create_iam_user_login_profile = false
name = "${var.boot_role}User"
password_reset_required = false
policy_arns = [aws_iam_policy.boot.arn]
}
resource "aws_iam_user_policy_attachment" "attachment" {
user = aws_iam_user.gitea_boot_user.name
policy_arn = aws_iam_policy.gitea_boot_policy.arn
}
resource "aws_iam_access_key" "gitea_boot_key" {
user = aws_iam_user.gitea_boot_user.name
}