github.com/jpreese/tflint@v0.19.2-0.20200908152133-b01686250fb6/rules/awsrules/models/mappings/iam.hcl (about) 1 import = "aws-sdk-go/models/apis/iam/2010-05-08/api-2.json" 2 3 mapping "aws_iam_access_key" { 4 user = existingUserNameType 5 pgp_key = stringType 6 status = statusType 7 } 8 9 mapping "aws_iam_account_alias" { 10 account_alias = any // accountAliasType 11 } 12 13 mapping "aws_iam_account_password_policy" { 14 allow_users_to_change_password = booleanType 15 hard_expiry = booleanObjectType 16 max_password_age = maxPasswordAgeType 17 minimum_password_length = minimumPasswordLengthType 18 password_reuse_prevention = passwordReusePreventionType 19 require_lowercase_characters = booleanType 20 require_numbers = booleanType 21 require_symbols = booleanType 22 require_uppercase_characters = booleanType 23 } 24 25 mapping "aws_iam_group" { 26 name = groupNameType 27 path = pathType 28 } 29 30 mapping "aws_iam_group_membership" { 31 name = any 32 users = any 33 group = groupNameType 34 } 35 36 mapping "aws_iam_group_policy" { 37 policy = policyDocumentType 38 name = policyNameType 39 name_prefix = any 40 group = groupNameType 41 } 42 43 mapping "aws_iam_group_policy_attachment" { 44 group = groupNameType 45 policy_arn = arnType 46 } 47 48 mapping "aws_iam_instance_profile" { 49 name = instanceProfileNameType 50 name_prefix = any 51 path = pathType 52 role = roleNameType 53 } 54 55 mapping "aws_iam_openid_connect_provider" { 56 url = OpenIDConnectProviderUrlType 57 client_id_list = clientIDListType 58 thumbprint_list = thumbprintListType 59 } 60 61 mapping "aws_iam_policy" { 62 description = policyDescriptionType 63 name = policyNameType 64 name_prefix = any 65 path = policyPathType 66 policy = policyDocumentType 67 } 68 69 mapping "aws_iam_policy_attachment" { 70 name = any 71 users = any 72 roles = any 73 groups = any 74 policy_arn = arnType 75 } 76 77 mapping "aws_iam_role" { 78 name = roleNameType 79 name_prefix = any 80 assume_role_policy = policyDocumentType 81 force_detach_policies = any 82 path = pathType 83 description = roleDescriptionType 84 max_session_duration = roleMaxSessionDurationType 85 permissions_boundary = arnType 86 tags = tagListType 87 } 88 89 mapping "aws_iam_role_policy" { 90 name = policyNameType 91 name_prefix = any 92 policy = policyDocumentType 93 role = roleNameType 94 } 95 96 mapping "aws_iam_role_policy_attachment" { 97 role = roleNameType 98 policy_arn = arnType 99 } 100 101 mapping "aws_iam_saml_provider" { 102 name = SAMLProviderNameType 103 saml_metadata_document = SAMLMetadataDocumentType 104 } 105 106 mapping "aws_iam_server_certificate" { 107 name = serverCertificateNameType 108 name_prefix = any 109 certificate_body = certificateBodyType 110 certificate_chain = certificateChainType 111 private_key = privateKeyType 112 path = pathType 113 } 114 115 mapping "aws_iam_service_linked_role" { 116 aws_service_name = groupNameType 117 custom_suffix = customSuffixType 118 description = roleDescriptionType 119 } 120 121 mapping "aws_iam_user" { 122 name = userNameType 123 path = pathType 124 permissions_boundary = arnType 125 force_destroy = any 126 tags = tagListType 127 } 128 129 mapping "aws_iam_user_group_membership" { 130 user = userNameType 131 groups = any 132 } 133 134 mapping "aws_iam_user_login_profile" { 135 user = userNameType 136 pgp_key = any 137 password_length = any 138 password_reset_required = booleanType 139 } 140 141 mapping "aws_iam_user_policy" { 142 policy = policyDocumentType 143 name = policyNameType 144 name_prefix = any 145 user = existingUserNameType 146 } 147 148 mapping "aws_iam_user_policy_attachment" { 149 user = existingUserNameType 150 policy_arn = arnType 151 } 152 153 mapping "aws_iam_user_ssh_key" { 154 username = userNameType 155 encoding = encodingType 156 public_key = publicKeyMaterialType 157 status = statusType 158 }