Sug*_*S N 6 amazon-web-services terraform aws-iam
我是 terraform 的新手,使用 terraform 创建 iam 用户
下面是 .tf 文件
resource "aws_iam_user" "lb" {
name = "Ec2_view"
# path = "/system/"
# tags = {
# tag-key = "tag-value"
# }
}
resource "aws_iam_access_key" "lb" {
user = "${aws_iam_user.lb.name}"
}
resource "aws_iam_user_policy" "lb_ro" {
name = "test"
user = "${aws_iam_user.lb.name}"
policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"ec2:Describe*"
],
"Effect": "Allow",
"Resource": "*"
}
]
}
EOF
}
resource "aws_iam_user_login_profile" "u" {
user = "${aws_iam_user.lb.name}"
password_reset_required = true
pgp_key="keybase:terraform_user"
}
output "password" {
value="${aws_iam_user_login_profile.u.encrypted_password"
}
Run Code Online (Sandbox Code Playgroud)
pgp_key 在 aws_iam_user_login_profile 中是什么意思以及创建 pgp_key 并在 terraform 代码中使用它的步骤?
Sug*_*S N 12
得到了答案
keybase pgp genkeybase:username_of_keybaseterraform output -raw password | base64 --decode | keybase pgp decrypt
Run Code Online (Sandbox Code Playgroud)
| 归档时间: |
|
| 查看次数: |
6373 次 |
| 最近记录: |