cisagov / molecule-packer-ci-iam-user-tf-module

A Terraform module that creates an AWS IAM user that can build AMIs via packer and/or access SSM parameters
Creative Commons Zero v1.0 Universal
1 stars 0 forks source link

Modify the IAM policy so the user can access SSM resources in any region #5

Closed dav3r closed 5 years ago

dav3r commented 5 years ago

Currently, when the IAM user is created by this terraform module, it will only get access to SSM parameters in the region where the module was executed. That may or may not be the same region used by the build process that requires this user in order to complete successfully.

With this change, it will not matter which region the build takes place in since the IAM user will have access to the specified SSM parameters in any region.