Best practices Blueprint for AWS IAM Policy

Create a template that deploys...

AWS IAM Policy

This blueprint creates an AWS IAM Policy by requiring users to provide a valid JSON policy document, adhering to best practices in security and compliance. It encourages the use of tags for resource identification and management, organizing variables into groups to assist users—including those who may not be cloud infrastructure experts—in configuring essential settings easily.

Template code

Automatically generated UI


---
constants:
  __name: "{{ name }}_{{ __guid }}"
variables:
  name:
    desc: "Name of the IAM policy."
    required: true
    group: Policy Details
  path:
    desc: "Path for the policy."
    required: false
    group: Policy Details
    default: "/"
  description:
    desc: "Description of the policy."
    required: false
    group: Policy Details
    default: "Managed by Resourcely"
  policy_document:
    desc: "The policy document. Provide a valid JSON policy."
    required: true
    group: Policy Document
  tags:
    group: Tags
    required: false
groups:
  Policy Details:
    order: 1
    desc: "Basic details for the IAM policy."
  Policy Document:
    order: 2
    desc: "Define the policy document."
  Tags:
    order: 3
    desc: "Tags to assign to the IAM policy."
---

resource "aws_iam_policy" "__name" {
  name        = {{ name }}
  path        = {{ path }}
  description = {{ description }}
  policy      = {{ policy_document }}

  tags = {
    Name = {{ name }}
    {{# tags }}
      {{ tags.key | required: false }} = {{ tags.value | required: false }}
    {{/ tags }}
  }
}

// The policy is created with the specified policy document.
// Tags are encouraged for resource identification and management.
//

AWS IAM Policy

Template code

Automatically generated UI

Talk to a Human