search

aws-ia / terraform-aws-control_tower_account_factory

AWS Control Tower Account Factory
Apache License 2.0
604 stars 386 forks source link

Assume role block for ct_management AWS provider. #449

Open jvox94 opened 3 months ago

jvox94 commented 3 months ago

Describe the outcome you'd like

My AWS Origination would like to limit the admin access given to the provider block ct management. we would like to have the assume role block for that ct provider Similar to all other provider blocks.

Expectation

provider "aws" {
  alias  = "ct_management"
  region = var.ct_home_region
  assume_role {
    role_arn     = "arn:${data.aws_partition.current.partition}:iam::${var.ct_management_account_id}:role/${var.ct_management_deployment_role_name}"
  }
  default_tags {
    tags = {
      managed_by = "AFT"
    }
  }
}
wiltangg commented 2 months ago

Hi @jvox94, thank you for the improvement idea. I have created a backlog item for this feature request.

jvox94 commented 1 month ago

Hi @wiltangg, Thank you for considering. Could you please share the status of the backlog item you have created and when can we expect this change.