github.com/wata727/tflint@v0.12.2-0.20191013070026-96dd0d36f385/rules/awsrules/models/mappings/iam.hcl (about) 1 import = "aws-sdk-go/models/apis/iam/2010-05-08/api-2.json" 2 3 mapping "aws_iam_access_key" { 4 user = existingUserNameType 5 pgp_key = stringType 6 status = statusType 7 } 8 9 mapping "aws_iam_account_alias" { 10 account_alias = any // accountAliasType 11 } 12 13 mapping "aws_iam_account_password_policy" { 14 allow_users_to_change_password = booleanType 15 hard_expiry = booleanObjectType 16 max_password_age = maxPasswordAgeType 17 minimum_password_length = minimumPasswordLengthType 18 password_reuse_prevention = passwordReusePreventionType 19 require_lowercase_characters = booleanType 20 require_numbers = booleanType 21 require_symbols = booleanType 22 require_uppercase_characters = booleanType 23 } 24 25 mapping "aws_iam_group" { 26 name = groupNameType 27 path = pathType 28 } 29 30 mapping "aws_iam_group_membership" { 31 name = any 32 users = any 33 group = groupNameType 34 } 35 36 mapping "aws_iam_group_policy" { 37 policy = policyDocumentType 38 name = policyNameType 39 name_prefix = any 40 group = groupNameType 41 } 42 43 mapping "aws_iam_group_policy_attachment" { 44 group = groupNameType 45 policy_arn = arnType 46 } 47 48 mapping "aws_iam_instance_profile" { 49 name = instanceProfileNameType 50 name_prefix = any 51 path = pathType 52 roles = any 53 role = roleNameType 54 } 55 56 mapping "aws_iam_openid_connect_provider" { 57 url = OpenIDConnectProviderUrlType 58 client_id_list = clientIDListType 59 thumbprint_list = thumbprintListType 60 } 61 62 mapping "aws_iam_policy" { 63 description = policyDescriptionType 64 name = policyNameType 65 name_prefix = any 66 path = policyPathType 67 policy = policyDocumentType 68 } 69 70 mapping "aws_iam_policy_attachment" { 71 name = any 72 users = any 73 roles = any 74 groups = any 75 policy_arn = arnType 76 } 77 78 mapping "aws_iam_role" { 79 name = roleNameType 80 name_prefix = any 81 assume_role_policy = policyDocumentType 82 force_detach_policies = any 83 path = pathType 84 description = roleDescriptionType 85 max_session_duration = roleMaxSessionDurationType 86 permissions_boundary = arnType 87 tags = tagListType 88 } 89 90 mapping "aws_iam_role_policy" { 91 name = policyNameType 92 name_prefix = any 93 policy = policyDocumentType 94 role = roleNameType 95 } 96 97 mapping "aws_iam_role_policy_attachment" { 98 role = roleNameType 99 policy_arn = arnType 100 } 101 102 mapping "aws_iam_saml_provider" { 103 name = SAMLProviderNameType 104 saml_metadata_document = SAMLMetadataDocumentType 105 } 106 107 mapping "aws_iam_server_certificate" { 108 name = serverCertificateNameType 109 name_prefix = any 110 certificate_body = certificateBodyType 111 certificate_chain = certificateChainType 112 private_key = privateKeyType 113 path = pathType 114 } 115 116 mapping "aws_iam_service_linked_role" { 117 aws_service_name = groupNameType 118 custom_suffix = customSuffixType 119 description = roleDescriptionType 120 } 121 122 mapping "aws_iam_user" { 123 name = userNameType 124 path = pathType 125 permissions_boundary = arnType 126 force_destroy = any 127 tags = tagListType 128 } 129 130 mapping "aws_iam_user_group_membership" { 131 user = userNameType 132 groups = any 133 } 134 135 mapping "aws_iam_user_login_profile" { 136 user = userNameType 137 pgp_key = any 138 password_length = any 139 password_reset_required = booleanType 140 } 141 142 mapping "aws_iam_user_policy" { 143 policy = policyDocumentType 144 name = policyNameType 145 name_prefix = any 146 user = existingUserNameType 147 } 148 149 mapping "aws_iam_user_policy_attachment" { 150 user = existingUserNameType 151 policy_arn = arnType 152 } 153 154 mapping "aws_iam_user_ssh_key" { 155 username = userNameType 156 encoding = encodingType 157 public_key = publicKeyMaterialType 158 status = statusType 159 }