Modernisation Platform Github OIDC Provider Module
This module allows users to create an OIDC Provider
and the associated IAM resources required to make use of the connect provider.
The additional_permissions
variable will allow you to supply any required IAM permissions beyond ReadOnlyAccess
in the form of
an aws_iam_policy_document
data call.
If you're looking to raise an issue with this module, please create a new issue in the Modernisation Platform repository .
Name
Version
aws
~> 5.0
tls
~> 4.0
No modules.
Name
Description
Type
Default
Required
additional_managed_policies
accept a list of arns for aws managed policies to attach to OIDC-provider role
list(string)
[]
no
additional_permissions
accept aws_iam_policy_document with additional permissions to attach to the OIDC-provider role
string
n/a
yes
github_known_thumbprints
The known intermediary thumbprints for the GitHub OIDC provider
list(string)
[ "1c58a3a8518e8759bf075b76b750d4f2df264fcd", "6938fd4d98bab03faadb97b34396831e3780aea1" ]
no
github_repositories
The github repositories, for example ["ministryofjustice/modernisation-platform-environments:*"]
list(string)
n/a
yes
role_name
OIDC Role Name
string
"github-actions"
no
tags_common
MOJ required tags
map(string)
n/a
yes
tags_prefix
prefix for name tags
string
n/a
yes