This is a Terraform module you can use to create and manage
IAM users as code.
How do you use this module?
This module allows you to pass in a map of users to create, where the keys in the map are the user names, and the
values are the following properties for that IAM user (all optional):
groups: a list of IAM groups to add the user to.
tags: a map of tags to apply to the user.
pgp_key: either a base-64 encoded PGP public key, or a Keybase username in the form
keybase:<USERNAME>, used to encrypt the user's credentials. Required if create_login_profile or
create_access_keys is true.
create_login_profile: if set to true, create a password for this user that can be used to login to the AWS Web
Console. The password will be encrypted using pgp_key, so it will NOT be stored in plain text in Terraform state.
create_access_keys: if set to true, create access keys for this user that can be used to authenticate to AWS
programmatically. The secret access key will be encrypted using pgp_key, so it will NOT be stored in plain text in
Terraform state.
path: the path for the IAM user
permissions_boundary: the ARN of the policy that is used to set the permissions boundary for the user.
ssh_public_key: the public part of the user's SSH key that will be added to their security credentials (e.g., for use with ssh-grunt). Currently only supports keys in ssh-rsa format"
How do you generate passwords and access keys with this module?
This module can optionally create a password for AWS Web Console access and/or access keys for programmatic access for
each IAM user if you set create_login_profile and/or create_access_keys to true for that IAM user, respectively.
To avoid having these secrets stored in plain text in Terraform state, this module will only generate the password or
access keys if you specify the pgp_key param for that user. This param can contain either the base-64 encoded PGP
public key for that user or the user's Keybase username in the format keybase:<USERNAME>.
We recommend using Keybase, as it makes it easier to manage PGP keys. Have each user at your company:
Use the Keybase app to create a PGP key and add it to their profile.
Send you their username.
Once you have their user name, set pgp_key = "keybase:<USERNAME>" and create_login_profile and/or
create_access_keys to true for that user, and this module will generate the password and/or access keys, and
export them in the output variables user_passwords and user_access_keys. The output will look something like this:
Note that this only works if the user has the private key for their PGP key on their local computer (which they will
if they used the Keybase app to create the PGP key in the first place).
Questions? Ask away.
We're here to talk about our services, answer any questions, give advice, or just to chat.
{"treedata":{"name":"root","toggled":true,"children":[{"name":".circleci","children":[{"name":"config.yml","path":".circleci/config.yml","sha":"e562a8fa21b855d2929346222f9ae3c01dfefd6c"}]},{"name":".editorconfig","path":".editorconfig","sha":"a5eec1063e66c4cb953cba222dd50b4d314ef3e2"},{"name":".gitignore","path":".gitignore","sha":"db9544649ac09686ab10d48c26aa1d65fbd25fb7"},{"name":".pre-commit-config.yaml","path":".pre-commit-config.yaml","sha":"8d98e6d06e9c4d3f9b680dc9ab6d5ccc7f9d96d3"},{"name":"CODEOWNERS","path":"CODEOWNERS","sha":"7ab1528db56eca5c136e005f4f08ec9b2c0f3aeb"},{"name":"LICENSE.txt","path":"LICENSE.txt","sha":"f4e3d9bd4717a044ed31ad847a300eee74371a78"},{"name":"README.adoc","path":"README.adoc","sha":"2fa6943dc66863a9f854a55374ed6b89f1dab998"},{"name":"_ci","children":[{"name":"output-debug-values.sh","path":"_ci/output-debug-values.sh","sha":"39d6d5f080a53f932e3b5ec970b5f268fd00e50a"}]},{"name":"_docs","children":[{"name":"auto-update.png","path":"_docs/auto-update.png","sha":"77bfd1c65de0245ac8b3c67d5b0b64fc440824bf"},{"name":"aws-cloudtrail-architecture.png","path":"_docs/aws-cloudtrail-architecture.png","sha":"a2dd9a08b8ed77744fd5febab3be7bdf633dee79"},{"name":"aws-cloudtrail.png","path":"_docs/aws-cloudtrail.png","sha":"acc7dcaf4b46ce3cef1bcc20be0329e12c320e7f"},{"name":"aws-config-architecture.png","path":"_docs/aws-config-architecture.png","sha":"721458048d5e539468c438498863a91fa96e0a85"},{"name":"aws-config-rules-architecture.png","path":"_docs/aws-config-rules-architecture.png","sha":"29fe3f20358b176e385d1bcdc0357bff2c1d5b4a"},{"name":"aws-config-rules.png","path":"_docs/aws-config-rules.png","sha":"ac3f7b35bcac949887e62aee260d9cb70edd3ae8"},{"name":"aws-config.png","path":"_docs/aws-config.png","sha":"02f4b326aef57372def4f3fafa4f0e4cec07e395"},{"name":"aws-guardduty.png","path":"_docs/aws-guardduty.png","sha":"053b92412fb8e3fb5740acc404b493fe1dd7229b"},{"name":"aws-organizations-architecture.png","path":"_docs/aws-organizations-architecture.png","sha":"bd57412fe85d3fe8d5e358db5e3b7bfef3e786a9"},{"name":"aws-organizations-icon.png","path":"_docs/aws-organizations-icon.png","sha":"b2b3fa04f51a23e5bae1b3389ffedf5e17b3cef2"},{"name":"kms-icon.png","path":"_docs/kms-icon.png","sha":"cd4f350a9a3fda41089928a7e396ee8924b7a901"},{"name":"multi-account-multi-region-aws-config.png","path":"_docs/multi-account-multi-region-aws-config.png","sha":"a9c813b1799fe71554c20c8fefc703792293bfe4"},{"name":"multiaccount_guardduty.png","path":"_docs/multiaccount_guardduty.png","sha":"c56b50bbb4c2a041366b430cada27b88aa02524b"},{"name":"ssh-grunt-architecture.png","path":"_docs/ssh-grunt-architecture.png","sha":"9ced8c68bcc7957e50aa016cad6c5b043a05b470"},{"name":"terminal-icon.png","path":"_docs/terminal-icon.png","sha":"df09d52d5b1176d7e231bab6c7712c3728e45c1b"}]},{"name":"codegen","children":[{"name":"README.adoc","path":"codegen/README.adoc","sha":"985e83db4ee84bc073af9580c251646f08137ffc"},{"name":"core-concepts.md","path":"codegen/core-concepts.md","sha":"6194c545021687193f2d0b8d35849f3492dac6ec"},{"name":"generate-all.sh","path":"codegen/generate-all.sh","sha":"bb0eaa685dde9ae01028799cfcb611d74c615eb7"},{"name":"generate-aws-config","children":[{"name":".gitignore","path":"codegen/generate-aws-config/.gitignore","sha":"b488f31b176e8da6501add7ce148074af2337d91"},{"name":"main.go","path":"codegen/generate-aws-config/main.go","sha":"fbdc3f3df8ccf910430acad3d7d29e8b7d584cd2"},{"name":"static","children":[{"name":"README.adoc","path":"codegen/generate-aws-config/static/README.adoc","sha":"c0e1204ac792b55ced9bedb40736621b78ef8740"},{"name":"core-concepts.md","path":"codegen/generate-aws-config/static/core-concepts.md","sha":"976e6424dcb277f70377f92eb2a10d0c8e595a85"},{"name":"variables.tf","path":"codegen/generate-aws-config/static/variables.tf","sha":"8e7381589b44c8322dfd44e382ffac14fa338a50"}]},{"name":"template_data.go","path":"codegen/generate-aws-config/template_data.go","sha":"5dc233c470a7bade37726233e52abe14b0d721a1"}]},{"name":"generate-aws-guardduty","children":[{"name":".gitignore","path":"codegen/generate-aws-guardduty/.gitignore","sha":"b488f31b176e8da6501add7ce148074af2337d91"},{"name":"main.go","path":"codegen/generate-aws-guardduty/main.go","sha":"65a8af5a54afd75c1123cf9905cac3a770ca210d"},{"name":"static","children":[{"name":"README.adoc","path":"codegen/generate-aws-guardduty/static/README.adoc","sha":"0c0833b9655d1d292f086b8f27c594ef1b968d68"},{"name":"variables.tf","path":"codegen/generate-aws-guardduty/static/variables.tf","sha":"992199e9e968a3006918b286c7f3e69eb2fbbd74"}]},{"name":"template_data.go","path":"codegen/generate-aws-guardduty/template_data.go","sha":"99aa2d3dd6e70fa736e6101e0ede935a59cec955"}]},{"name":"generate-multiregion-kms-grant","children":[{"name":".gitignore","path":"codegen/generate-multiregion-kms-grant/.gitignore","sha":"ce81abc8eeae39683199307d44536f0a8b1b7862"},{"name":"main.go","path":"codegen/generate-multiregion-kms-grant/main.go","sha":"b2de863570dc8b0beb69d015ac3b656fc6af6fbb"},{"name":"static","children":[{"name":"README.adoc","path":"codegen/generate-multiregion-kms-grant/static/README.adoc","sha":"8b31bdf6b848e87f10f3ae1a2d031ede038f52b9"},{"name":"core-concepts.md","path":"codegen/generate-multiregion-kms-grant/static/core-concepts.md","sha":"3eb1725fa927a84cc2a0341335d150bf5c6e70f5"},{"name":"variables.tf","path":"codegen/generate-multiregion-kms-grant/static/variables.tf","sha":"d27a8da6b13e1ea67a1b4721edd8bbe59781df7d"}]},{"name":"template_data.go","path":"codegen/generate-multiregion-kms-grant/template_data.go","sha":"778c50771f59f2fea9f226c6c1af2fb3421554fa"}]},{"name":"generate-multiregion-kms","children":[{"name":".gitignore","path":"codegen/generate-multiregion-kms/.gitignore","sha":"dd60654458233c0bdb18892c5989f1828889d55b"},{"name":"main.go","path":"codegen/generate-multiregion-kms/main.go","sha":"a4c0e0fefe40a90d724a054ceef68745871eb6e6"},{"name":"static","children":[{"name":"README.adoc","path":"codegen/generate-multiregion-kms/static/README.adoc","sha":"2bdf512e1f415dd833b7c5f9877ba63ab2ad1d08"},{"name":"variables.tf","path":"codegen/generate-multiregion-kms/static/variables.tf","sha":"0b4f0a416c2947f2ec3401322da98841988b5373"}]},{"name":"template_data.go","path":"codegen/generate-multiregion-kms/template_data.go","sha":"7ec2a39c066905afa345fd07881681f199ad700f"}]},{"name":"generator","children":[{"name":"aws.go","path":"codegen/generator/aws.go","sha":"5c4712b16f00ebfe3d9ab85e5ef7ec4e7376bd7e"},{"name":"cli.go","path":"codegen/generator/cli.go","sha":"6e92f692f11d26c182c9e987fd566b0b8cb10901"},{"name":"errors.go","path":"codegen/generator/errors.go","sha":"21fd1f6d4bef60ea9cb39939783696526ddd02e7"},{"name":"generator.go","path":"codegen/generator/generator.go","sha":"512cd371bdf1342885f4313f4bb607137f8e51f8"},{"name":"main.tf.tpl.go","path":"codegen/generator/main.tf.tpl.go","sha":"74a04bfcd190dfbb669f9856c83059ca5a9bc6fd"},{"name":"outputs.tf.tpl.go","path":"codegen/generator/outputs.tf.tpl.go","sha":"d5f5236e76f98825f082c5d2d125b5f4f0376f09"}]},{"name":"go.mod","path":"codegen/go.mod","sha":"10fc12445001ccc8061886f383e9a37ef704121f"},{"name":"go.sum","path":"codegen/go.sum","sha":"264a7a2d25f07c58b4fcc30125fc569b23f191dd"},{"name":"logging","children":[{"name":"logging.go","path":"codegen/logging/logging.go","sha":"d4fb9da710acb21567b4e0581cb7bd7692baca04"}]}]},{"name":"examples","children":[{"name":"account-baseline-app","children":[{"name":"README.md","path":"examples/account-baseline-app/README.md","sha":"a7925e8838d754d6ffce99821d61cbe6cf1f83df"},{"name":"main.tf","path":"examples/account-baseline-app/main.tf","sha":"52e5ab7d4cba5ceffa3bea2c2f3f68e3695f744a"},{"name":"outputs.tf","path":"examples/account-baseline-app/outputs.tf","sha":"99f7a2e4804e904ec545a360df3c85c4248800ae"},{"name":"variables.tf","path":"examples/account-baseline-app/variables.tf","sha":"8eea1275b0be0af73fd78f5ecaf9817a0516c8e9"}]},{"name":"account-baseline-root","children":[{"name":"README.md","path":"examples/account-baseline-root/README.md","sha":"aa53b9925ab07a760010d174cbf7a671792b137c"},{"name":"main.tf","path":"examples/account-baseline-root/main.tf","sha":"b83fa351a74f01cdeedcbc409a720aa85cf0603a"},{"name":"outputs.tf","path":"examples/account-baseline-root/outputs.tf","sha":"41480db71946de957e975899635658b6926237d0"},{"name":"variables.tf","path":"examples/account-baseline-root/variables.tf","sha":"b151dc483986fc4dda8148084873c3f4fb3b0ce4"}]},{"name":"account-baseline-security","children":[{"name":"README.md","path":"examples/account-baseline-security/README.md","sha":"292b4ae949b94a126389bd8bf88df5d5ed699649"},{"name":"main.tf","path":"examples/account-baseline-security/main.tf","sha":"e976656f00269f1ffd6d7f131d7527d38afd7e5a"},{"name":"outputs.tf","path":"examples/account-baseline-security/outputs.tf","sha":"fe0478dd9605f017e38bd084c611c6390bc916d1"},{"name":"variables.tf","path":"examples/account-baseline-security/variables.tf","sha":"96a1523c3e0106681af3f1d300f65d5368cbcce2"}]},{"name":"auto-update","children":[{"name":"README.md","path":"examples/auto-update/README.md","sha":"d7c630c4585bad7869d55bc6c62fca248eeb521a"},{"name":"auto-update-example.json","path":"examples/auto-update/auto-update-example.json","sha":"865777b46d71f54c18fcd69dbac280792c9a26ea"}]},{"name":"aws-config-multi-region","children":[{"name":"README.md","path":"examples/aws-config-multi-region/README.md","sha":"5d472db5cdc843b494852a062d8c0880f246fcd0"},{"name":"terraform","children":[{"name":"main.tf","path":"examples/aws-config-multi-region/terraform/main.tf","sha":"dc98f316f0936cc02210289cadd6e47712a2414f"},{"name":"outputs.tf","path":"examples/aws-config-multi-region/terraform/outputs.tf","sha":"77ee90f69634c965b8ebed79a8d3afd6adca4db4"},{"name":"variables.tf","path":"examples/aws-config-multi-region/terraform/variables.tf","sha":"28ef8a8f6216d3d717f969f7a74855fdaf789bbc"}]},{"name":"terragrunt","children":[{"name":"terragrunt.hcl","path":"examples/aws-config-multi-region/terragrunt/terragrunt.hcl","sha":"9a55dab3f9888a9258099d558df0972abec52792"}]}]},{"name":"aws-config-rules","children":[{"name":"README.md","path":"examples/aws-config-rules/README.md","sha":"6cd2794e82af1e3c3620d8feaed136af5358207e"},{"name":"main.tf","path":"examples/aws-config-rules/main.tf","sha":"8d1e0c0926d949adeee8dc450cea6f39d2099bc5"},{"name":"outputs.tf","path":"examples/aws-config-rules/outputs.tf","sha":"4319400eb4190f58458f2dd9398225869ff08da3"},{"name":"variables.tf","path":"examples/aws-config-rules/variables.tf","sha":"c97f8c6bdaf4ab3f9e5f26332fc7ec983e881a53"}]},{"name":"aws-config","children":[{"name":"README.md","path":"examples/aws-config/README.md","sha":"5d66d09633de365e154669a090edc37fc70548d1"},{"name":"main.tf","path":"examples/aws-config/main.tf","sha":"beba3c9f10ec6c5deb73b67216ea8383f896139b"},{"name":"outputs.tf","path":"examples/aws-config/outputs.tf","sha":"ddd32698f39772d663a2d9b8a6276260f5431068"},{"name":"variables.tf","path":"examples/aws-config/variables.tf","sha":"66f62d7333d5df8b562e6f2dfa4f701b88e4f31b"}]},{"name":"aws-organizations","children":[{"name":"README.md","path":"examples/aws-organizations/README.md","sha":"1da3c2fc061fee6ee99564b8b2323ccf69f2c690"},{"name":"main.tf","path":"examples/aws-organizations/main.tf","sha":"d3e953f34be08d5748db592ef86215683d91709c"},{"name":"outputs.tf","path":"examples/aws-organizations/outputs.tf","sha":"a713386520ca735201acfc9a560eda7fcf2aa51a"},{"name":"variables.tf","path":"examples/aws-organizations/variables.tf","sha":"59afc28c87bc3c49d11c6faf7e112643f0a95481"}]},{"name":"cloudtrail-custom-key","children":[{"name":"README.md","path":"examples/cloudtrail-custom-key/README.md","sha":"bb376ddaca4b52bef18a5526aa9cb0465574ff7e"},{"name":"main.tf","path":"examples/cloudtrail-custom-key/main.tf","sha":"6aff56c406ab5d9973750a1012d73655333f16ba"},{"name":"outputs.tf","path":"examples/cloudtrail-custom-key/outputs.tf","sha":"2617a8347eb588d6ed5ccb529f50f3b58ddb1b7b"},{"name":"variables.tf","path":"examples/cloudtrail-custom-key/variables.tf","sha":"7a3ac8ce318fd783a427e68e490783a93747eb02"}]},{"name":"cloudtrail","children":[{"name":"README.md","path":"examples/cloudtrail/README.md","sha":"2fbe4b7494d970738d054910d86d0ae31718c8ec"},{"name":"main.tf","path":"examples/cloudtrail/main.tf","sha":"011c905da1c4d2e5e96893c002b61827d8e99a43"},{"name":"outputs.tf","path":"examples/cloudtrail/outputs.tf","sha":"2617a8347eb588d6ed5ccb529f50f3b58ddb1b7b"},{"name":"variables.tf","path":"examples/cloudtrail/variables.tf","sha":"50918a7ba4255bbc940a340010075a489adf44c5"}]},{"name":"cross-account-iam-roles","children":[{"name":"README.md","path":"examples/cross-account-iam-roles/README.md","sha":"bac6fd37f7f7009454a66e55e8ff377fff36aefb"},{"name":"main.tf","path":"examples/cross-account-iam-roles/main.tf","sha":"db63bef612410f1e8e76aff24bfafa71f5c9786f"},{"name":"outputs.tf","path":"examples/cross-account-iam-roles/outputs.tf","sha":"44af3be56d0a80e4d509fcd62c0e6dd8628072fa"},{"name":"variables.tf","path":"examples/cross-account-iam-roles/variables.tf","sha":"ae71d83df1715782bb47a965435e3783b7dcee81"}]},{"name":"custom-iam-entity","children":[{"name":"README.md","path":"examples/custom-iam-entity/README.md","sha":"7e6c2e15f44a4ddc28ef276da4b323d2fd326a3f"},{"name":"main.tf","path":"examples/custom-iam-entity/main.tf","sha":"581e8abca9be5650e7e8b8742e95d0776f219097"},{"name":"outputs.tf","path":"examples/custom-iam-entity/outputs.tf","sha":"835eb64f431386925438cb2f63e48e413faee90c"},{"name":"variables.tf","path":"examples/custom-iam-entity/variables.tf","sha":"d22adf49a09d0d02315679d6d7836a60583775f7"}]},{"name":"fail2ban","children":[{"name":"README.md","path":"examples/fail2ban/README.md","sha":"6599f8481a3e7666ffe7924707c89b0701d57689"},{"name":"fail2ban-example.json","path":"examples/fail2ban/fail2ban-example.json","sha":"5315266065b2fe4b7f1542ed36d74bac55eb3a1d"},{"name":"main.tf","path":"examples/fail2ban/main.tf","sha":"2130112c46bf2567a4391a4d950fcf7689ebeba4"},{"name":"outputs.tf","path":"examples/fail2ban/outputs.tf","sha":"77a6ab8a992cd106de126f24b2950c1efa499229"},{"name":"user-data","children":[{"name":"user-data.sh","path":"examples/fail2ban/user-data/user-data.sh","sha":"460b230fb025451e06e8cdd73f83bb5bfea21110"}]},{"name":"variables.tf","path":"examples/fail2ban/variables.tf","sha":"236006c79b34f4fe3a517dd2ae8b805bfb19b6df"}]},{"name":"guardduty","children":[{"name":"README.md","path":"examples/guardduty/README.md","sha":"23c75950a1b8b33286b79bd5e9d853cee02d62ea"},{"name":"main.tf","path":"examples/guardduty/main.tf","sha":"009f3a8fee31291785ecb58f5b0c75f7a1c67b87"},{"name":"outputs.tf","path":"examples/guardduty/outputs.tf","sha":"24b4eecc8136725bafa182f1c4febdf90da49a92"},{"name":"variables.tf","path":"examples/guardduty/variables.tf","sha":"77f3fbbeef3500c93b55899ad8e92f44420858ee"}]},{"name":"iam-groups","children":[{"name":"README.md","path":"examples/iam-groups/README.md","sha":"7bd21c82fd8f28f7b3155497a0524d86ce17cfdd"},{"name":"main.tf","path":"examples/iam-groups/main.tf","sha":"2f8d5584e9eff0df6d6f726e0ef56cfb2411891e"},{"name":"outputs.tf","path":"examples/iam-groups/outputs.tf","sha":"5076c13be431d7844e1ce524bcd40076450c051e"},{"name":"variables.tf","path":"examples/iam-groups/variables.tf","sha":"6132b953e392a2050532881faab88a2eb10378c6"}]},{"name":"iam-user-password-policy","children":[{"name":"README.md","path":"examples/iam-user-password-policy/README.md","sha":"bc62258833767d2e383a130c43d57a11e229af27"},{"name":"main.tf","path":"examples/iam-user-password-policy/main.tf","sha":"e7c968c53a1a467a0a91a1bac314b1bae3af844e"},{"name":"variables.tf","path":"examples/iam-user-password-policy/variables.tf","sha":"e123f5bbbaa376c3c8edf5f37e2bc012feed65d7"}]},{"name":"iam-users","children":[{"name":"README.md","path":"examples/iam-users/README.md","sha":"f8b65e9756e9f8c8703a854c1363be700b5fe8d9"},{"name":"main.tf","path":"examples/iam-users/main.tf","sha":"85462d4546a02f11f4eb6bc3d38295794653db47"},{"name":"outputs.tf","path":"examples/iam-users/outputs.tf","sha":"2b305a310e6c78ed5d89ff62303b5c64b956bd12"},{"name":"variables.tf","path":"examples/iam-users/variables.tf","sha":"d3693a709d6bee6f57aabaf07cddb0f02349c7a4"}]},{"name":"ip-lockdown","children":[{"name":"README.md","path":"examples/ip-lockdown/README.md","sha":"3962ba23a76d8f02e5c0ffc8cb71196991628e38"},{"name":"aws-example","children":[{"name":"README.md","path":"examples/ip-lockdown/aws-example/README.md","sha":"da44a1265bdd321d10b4a6e3471a655da91033bb"},{"name":"main.tf","path":"examples/ip-lockdown/aws-example/main.tf","sha":"0568d5a2922ebcb3208dbd52d34dec4169aca917"},{"name":"outputs.tf","path":"examples/ip-lockdown/aws-example/outputs.tf","sha":"a175a78c9a10f9f2fd9d7c84f9b304aebc1bdb41"},{"name":"user-data","children":[{"name":"user-data.sh","path":"examples/ip-lockdown/aws-example/user-data/user-data.sh","sha":"c6d308027737a434f4c96bc3eba5bd301897af62"}]},{"name":"variables.tf","path":"examples/ip-lockdown/aws-example/variables.tf","sha":"85be46b79dfe349e32974eccdc9c3206211787ac"}]},{"name":"ip-lockdown-sample.json","path":"examples/ip-lockdown/ip-lockdown-sample.json","sha":"c433a46b5b598a159581809ac2a4e411682a3600"},{"name":"local-test","children":[{"name":"README.md","path":"examples/ip-lockdown/local-test/README.md","sha":"3f0e1a6483ce3155bb04dbb9a4fd76ed41486d35"},{"name":"docker-compose.yml","path":"examples/ip-lockdown/local-test/docker-compose.yml","sha":"7c8e3a5d1fd40a95ef99b4bba0911c63ed43b530"}]}]},{"name":"kms-grant-multi-region","children":[{"name":"main.tf","path":"examples/kms-grant-multi-region/main.tf","sha":"e4de68bb43d317ebef2ccfe2340b740c48154e4e"},{"name":"variables.tf","path":"examples/kms-grant-multi-region/variables.tf","sha":"43e0dc3512d054801c09cd80e47fb28b13f249a7"}]},{"name":"kms-master-key-multi-region","children":[{"name":"main.tf","path":"examples/kms-master-key-multi-region/main.tf","sha":"007417a56a47084c16f570e576f45196802d0a14"},{"name":"outputs.tf","path":"examples/kms-master-key-multi-region/outputs.tf","sha":"c2685a282b5ce295c2dd80a78841711a40e80dcb"},{"name":"variables.tf","path":"examples/kms-master-key-multi-region/variables.tf","sha":"00812e35b344a3d0a715bb781b606627dda87045"}]},{"name":"kms-master-key","children":[{"name":"README.md","path":"examples/kms-master-key/README.md","sha":"821565d831f2afcf7a2ffeea9a0854fabdaae033"},{"name":"main.tf","path":"examples/kms-master-key/main.tf","sha":"565a1d0e75d19d858df9f2fca539538608296747"},{"name":"outputs.tf","path":"examples/kms-master-key/outputs.tf","sha":"4d5fd0a19ea917beff0241f169b51417ff9935b9"},{"name":"variables.tf","path":"examples/kms-master-key/variables.tf","sha":"c1de5a7b1c0859710d1253b61baf86c4564560e3"}]},{"name":"ntp","children":[{"name":"README.md","path":"examples/ntp/README.md","sha":"b676e802c1d196f6af204d14d143b80864bccd30"},{"name":"ntp-example.json","path":"examples/ntp/ntp-example.json","sha":"f970d8ef7f829746ea040e4f1f18dfabea74494a"}]},{"name":"os-hardening","children":[{"name":"README.md","path":"examples/os-hardening/README.md","sha":"d311d0932f7e98b236d0dcf3d9c629a7f8b3b107"},{"name":"packer-build.sh","path":"examples/os-hardening/packer-build.sh","sha":"8a0cf99893046f648c04ad62d505746e9c3a5e95"},{"name":"packer","children":[{"name":"amazon-linux.json","path":"examples/os-hardening/packer/amazon-linux.json","sha":"f5441504e64a9249939de93394a35a387aad5b16"},{"name":"files","children":[{"name":"etc","children":[{"name":"fstab","path":"examples/os-hardening/packer/files/etc/fstab","sha":"cbf68cec68a92bc54f514dd0d6906f19cea857e6"}]}]}]},{"name":"terraform","children":[{"name":"main.tf","path":"examples/os-hardening/terraform/main.tf","sha":"0f3baab595ffd23b051a9d974e5a70083e8237f1"},{"name":"outputs.tf","path":"examples/os-hardening/terraform/outputs.tf","sha":"33083aed25a4ed6e323bf84381b896614814c9d1"},{"name":"variables.tf","path":"examples/os-hardening/terraform/variables.tf","sha":"b03be351c82d4d5c6942cd29adc78fe11e23cf1b"}]}]},{"name":"private-s3-bucket","children":[{"name":"README.md","path":"examples/private-s3-bucket/README.md","sha":"5214e6225de5e051cb2842fa2eb6e04a92184a10"},{"name":"main.tf","path":"examples/private-s3-bucket/main.tf","sha":"588e5b779f4a60a0e9bae25b09a1ad72b84be3ff"},{"name":"outputs.tf","path":"examples/private-s3-bucket/outputs.tf","sha":"efddeeb33901e91f4f28a438afb3455f2cca5e18"},{"name":"variables.tf","path":"examples/private-s3-bucket/variables.tf","sha":"92ff2336e37bd84902a59213bfe370c2f2ae9eac"}]},{"name":"saml-iam-roles","children":[{"name":"README.md","path":"examples/saml-iam-roles/README.md","sha":"b4ef2b28d5704aec892ea54cc28a61fbb46378c9"},{"name":"main.tf","path":"examples/saml-iam-roles/main.tf","sha":"0d0401e6f989b5b02b262f0465dc284321618c37"},{"name":"outputs.tf","path":"examples/saml-iam-roles/outputs.tf","sha":"1bd4fec9529cddfd2d3f61bba60f9dfb8b286c70"},{"name":"saml-metadata.xml","path":"examples/saml-iam-roles/saml-metadata.xml","sha":"88596cfde52242a43559c79216a1c60b2ea12903"},{"name":"variables.tf","path":"examples/saml-iam-roles/variables.tf","sha":"28705aa859940aa4b8027a19fe0b5b4affba939e"}]},{"name":"ssh-grunt","children":[{"name":"houston","children":[{"name":"README.md","path":"examples/ssh-grunt/houston/README.md","sha":"b73e23cd9fe47ba48e355605ff56a5740283a950"},{"name":"main.tf","path":"examples/ssh-grunt/houston/main.tf","sha":"e2e58ab97c60a5b81eab2c8beba3ccc37d11eb03"},{"name":"outputs.tf","path":"examples/ssh-grunt/houston/outputs.tf","sha":"978b316044d417393b70100a427de1068c4d417f"},{"name":"variables.tf","path":"examples/ssh-grunt/houston/variables.tf","sha":"fb687fec420ea8cc16384f4bda4c4df45573d636"}]},{"name":"iam","children":[{"name":"README.md","path":"examples/ssh-grunt/iam/README.md","sha":"2add9fcdb0ed7f06816c3761fa0bef3bb6bc535d"},{"name":"main.tf","path":"examples/ssh-grunt/iam/main.tf","sha":"42285563ed13a4c8654a088c13a0caa41ed0eee2"},{"name":"outputs.tf","path":"examples/ssh-grunt/iam/outputs.tf","sha":"978b316044d417393b70100a427de1068c4d417f"},{"name":"variables.tf","path":"examples/ssh-grunt/iam/variables.tf","sha":"1ee58afdef7dad43bb3fb221995cc3daf631177b"}]},{"name":"mock-houston","children":[{"name":"README.md","path":"examples/ssh-grunt/mock-houston/README.md","sha":"94c0ef92814db64b5f3d578a4ba7011fb058fedf"},{"name":"main.tf","path":"examples/ssh-grunt/mock-houston/main.tf","sha":"fb348f751e358a6e521bf980eb066968a3bbe435"},{"name":"outputs.tf","path":"examples/ssh-grunt/mock-houston/outputs.tf","sha":"a25069b6b919c0fa31fc32c3bcf1d326f7c3d46c"},{"name":"variables.tf","path":"examples/ssh-grunt/mock-houston/variables.tf","sha":"f435d1666f6a4ea18d6ce8a3230d8898a965fbea"}]},{"name":"packer","children":[{"name":"README.md","path":"examples/ssh-grunt/packer/README.md","sha":"40dc203c7287544434c7f668ea58782afd2f2386"},{"name":"build-binary.sh","path":"examples/ssh-grunt/packer/build-binary.sh","sha":"fe84ead78eb3e87e4855272f28c83d681c58ffff"},{"name":"ssh-grunt-houston.json","path":"examples/ssh-grunt/packer/ssh-grunt-houston.json","sha":"bf22ccbe7bec1b035f90c11ea8f37a05c6f8d992"},{"name":"ssh-grunt-iam.json","path":"examples/ssh-grunt/packer/ssh-grunt-iam.json","sha":"eb62c6f8e47c89dfb6d5a72ba97985cfabd05bbd"}]}]},{"name":"ssm-healthchecks-iam-permissions","children":[{"name":"README.md","path":"examples/ssm-healthchecks-iam-permissions/README.md","sha":"f1fe555a3aff887a966def0a1d3ccaff3dd826e7"},{"name":"main.tf","path":"examples/ssm-healthchecks-iam-permissions/main.tf","sha":"d717a38bc7f52fed57ac3c8197cb950bd99cd4af"},{"name":"outputs.tf","path":"examples/ssm-healthchecks-iam-permissions/outputs.tf","sha":"52688c3a4f1f8349500505fb8949fa0d21c385a3"},{"name":"variables.tf","path":"examples/ssm-healthchecks-iam-permissions/variables.tf","sha":"725532cff7e91c2858c666a8d6a21cade2db213c"}]}]},{"name":"modules","children":[{"name":"_deprecated","children":[{"name":"custom-iam-group","children":[{"name":"README.md","path":"modules/_deprecated/custom-iam-group/README.md","sha":"e7a0ff783eb1052aa77fe50d7eaa6a06d2d82649"}]}]},{"name":"account-baseline-app","children":[{"name":"README.adoc","path":"modules/account-baseline-app/README.adoc","sha":"7f18ec7d53555ca35cb437e748ad46886f5995aa"},{"name":"main.tf","path":"modules/account-baseline-app/main.tf","sha":"e1b6a7731e7f1522ee1d579ec46ffcb2065f3329"},{"name":"outputs.tf","path":"modules/account-baseline-app/outputs.tf","sha":"df81cfe1ae29f918511037530a7199ed2ae6578d"},{"name":"variables.tf","path":"modules/account-baseline-app/variables.tf","sha":"4d1a18f2fcde364d4cbd70df28d1976e3005c89d"}]},{"name":"account-baseline-root","children":[{"name":"README.adoc","path":"modules/account-baseline-root/README.adoc","sha":"ed158ce608bc26d37a14e49266948f2194b4368f"},{"name":"core-concepts.md","path":"modules/account-baseline-root/core-concepts.md","sha":"a4bfbf153e6db44c2020a9abd944f7e21a57f58d"},{"name":"logs-account-resources.tf","path":"modules/account-baseline-root/logs-account-resources.tf","sha":"e0c9f9e1a8663725633357650c1b6eff80b161f2"},{"name":"main.tf","path":"modules/account-baseline-root/main.tf","sha":"53593fc1358b27c705e677f128f78ddb2e97205a"},{"name":"outputs.tf","path":"modules/account-baseline-root/outputs.tf","sha":"68c27771a66c5ee05958825760594054313db122"},{"name":"variables.tf","path":"modules/account-baseline-root/variables.tf","sha":"d2316374f660a7df0bebbbc22e9782e46a111cc7"}]},{"name":"account-baseline-security","children":[{"name":"README.adoc","path":"modules/account-baseline-security/README.adoc","sha":"4a6ff36ad488396075f61c9e8c01ef16d2d4656d"},{"name":"main.tf","path":"modules/account-baseline-security/main.tf","sha":"7f89023671f468afb288c34ad3a05f035189b34c"},{"name":"outputs.tf","path":"modules/account-baseline-security/outputs.tf","sha":"9c31fc7766226e38e620e1c9c93117aca47cafb3"},{"name":"variables.tf","path":"modules/account-baseline-security/variables.tf","sha":"28721e096ff3f07ad0d0283e408a6d6640478d02"}]},{"name":"auto-update","children":[{"name":"README.adoc","path":"modules/auto-update/README.adoc","sha":"6aefe0ec50a3479dc08366ee6ace6f306eec8e7a"},{"name":"core-concepts.md","path":"modules/auto-update/core-concepts.md","sha":"a292e900ff20e205679c5a8a2b382081f338a41f"},{"name":"install-scripts","children":[{"name":"configure-auto-update","path":"modules/auto-update/install-scripts/configure-auto-update","sha":"9557efec90bf62cbcd0360198ec2bf984a8a873b"},{"name":"unattended_upgrades_config.txt","path":"modules/auto-update/install-scripts/unattended_upgrades_config.txt","sha":"abe88fd8a5037ce518bec69a6cac0699cb421d47"},{"name":"yum_cron_config.txt","path":"modules/auto-update/install-scripts/yum_cron_config.txt","sha":"e7ef4273f1b2af0c9c032fadaacd03130ba5ea78"}]},{"name":"install.sh","path":"modules/auto-update/install.sh","sha":"7c19fd0d04b11c358af64149b3169d6b2c5e3b58"}]},{"name":"aws-auth","children":[{"name":"AWS-AUTH-1PASSWORD.md","path":"modules/aws-auth/AWS-AUTH-1PASSWORD.md","sha":"85348650e336ba37aece840bf790048b5e919910"},{"name":"AWS-AUTH-LASTPASS.md","path":"modules/aws-auth/AWS-AUTH-LASTPASS.md","sha":"f989822c9600fdb7dec2b67a929f8e4b49947aa8"},{"name":"README.md","path":"modules/aws-auth/README.md","sha":"7c7b79c87fccb29c9bbab1c5e80de163b478ea7d"},{"name":"bin","children":[{"name":"aws-auth","path":"modules/aws-auth/bin/aws-auth","sha":"53ac944b29b7f15d97d312b0fd3745ffbd0a6dd8"}]},{"name":"install.sh","path":"modules/aws-auth/install.sh","sha":"ab9611d92d6822ceed981bdff3766724366037f0"}]},{"name":"aws-config-bucket","children":[{"name":"README.md","path":"modules/aws-config-bucket/README.md","sha":"2988d934e16617289522a4ea711ee07589ce96d7"},{"name":"main.tf","path":"modules/aws-config-bucket/main.tf","sha":"4ee3308a44de06ea5e4243dde0031c1b54838277"},{"name":"outputs.tf","path":"modules/aws-config-bucket/outputs.tf","sha":"04e2cc58cd9f2f38be847d1735e65bf635c9b8a9"},{"name":"variables.tf","path":"modules/aws-config-bucket/variables.tf","sha":"8c2ff746eb15fcd75f7e28ef2d9dec52c7c10c9a"}]},{"name":"aws-config-multi-region","children":[{"name":"README.adoc","path":"modules/aws-config-multi-region/README.adoc","sha":"c0e1204ac792b55ced9bedb40736621b78ef8740"},{"name":"core-concepts.md","path":"modules/aws-config-multi-region/core-concepts.md","sha":"976e6424dcb277f70377f92eb2a10d0c8e595a85"},{"name":"main.tf","path":"modules/aws-config-multi-region/main.tf","sha":"dfa822636c14ca185f808bf21062ea5958add998"},{"name":"outputs.tf","path":"modules/aws-config-multi-region/outputs.tf","sha":"b0b62c8a003fcef88734cb540ad9e75b25721ffa"},{"name":"variables.tf","path":"modules/aws-config-multi-region/variables.tf","sha":"8e7381589b44c8322dfd44e382ffac14fa338a50"}]},{"name":"aws-config-rules","children":[{"name":"README.adoc","path":"modules/aws-config-rules/README.adoc","sha":"b45089500e8c277c2eb6c744a58781bfa5394269"},{"name":"core-concepts.md","path":"modules/aws-config-rules/core-concepts.md","sha":"10477be51fde642f31032ccd15a55d9218eff224"},{"name":"main.tf","path":"modules/aws-config-rules/main.tf","sha":"8ba58ffaa1d746d1cf4c75a4fc5c8cb4077d6087"},{"name":"outputs.tf","path":"modules/aws-config-rules/outputs.tf","sha":"c297ad118d46f79f286d6577770ab46e59555ccb"},{"name":"variables.tf","path":"modules/aws-config-rules/variables.tf","sha":"9d0b0f29f9783f66e5e938e3912f268f44c9fdab"}]},{"name":"aws-config","children":[{"name":"README.adoc","path":"modules/aws-config/README.adoc","sha":"6bbbc1efc5801b27371c99ecbef3bff56a56f200"},{"name":"core-concepts.md","path":"modules/aws-config/core-concepts.md","sha":"e5a7b8646bab42398ff7f5224549e528ce8c0d52"},{"name":"main.tf","path":"modules/aws-config/main.tf","sha":"ff74c507a78850cfce82b886b7bf6a0aaa01e30a"},{"name":"outputs.tf","path":"modules/aws-config/outputs.tf","sha":"bcd505e4ac4102bc09750adb36c99398a06eb1a6"},{"name":"variables.tf","path":"modules/aws-config/variables.tf","sha":"9be6915fc2de8103550ae4cbf24eb8908eff6148"}]},{"name":"aws-organizations","children":[{"name":"README.adoc","path":"modules/aws-organizations/README.adoc","sha":"711b480a00245dc87a73e1c13a18867498eb6f7b"},{"name":"core-concepts.md","path":"modules/aws-organizations/core-concepts.md","sha":"8766c8f36eef9e8992bf13a44f6571261c43995d"},{"name":"main.tf","path":"modules/aws-organizations/main.tf","sha":"74efb23a04f4cabac266dc859421a66bee7d0041"},{"name":"outputs.tf","path":"modules/aws-organizations/outputs.tf","sha":"d3b10eb4330f8d359b36fb797ba782f303988e07"},{"name":"variables.tf","path":"modules/aws-organizations/variables.tf","sha":"4eac97565d5ab76a5e0c03cde4a9337001125156"}]},{"name":"cloudtrail-bucket","children":[{"name":"README.md","path":"modules/cloudtrail-bucket/README.md","sha":"77bdc9e5689c0c06503867153355bc81d9962498"},{"name":"main.tf","path":"modules/cloudtrail-bucket/main.tf","sha":"4a6dd6e190a46a68f2dfa03e4f3291531773837b"},{"name":"outputs.tf","path":"modules/cloudtrail-bucket/outputs.tf","sha":"5027f9ae3ec36bca5f1173412b1248a0b6dfcced"},{"name":"variables.tf","path":"modules/cloudtrail-bucket/variables.tf","sha":"9e4281bfeb721ad4ea1ff324090d5106a54d784f"}]},{"name":"cloudtrail","children":[{"name":"README.adoc","path":"modules/cloudtrail/README.adoc","sha":"cb56736b0eff0b10521fc5a42e6fd30e6660f165"},{"name":"core-concepts.md","path":"modules/cloudtrail/core-concepts.md","sha":"7e8c8a4631410e36831f5ae2b5644d229d36a4d0"},{"name":"main.tf","path":"modules/cloudtrail/main.tf","sha":"2f12ac13e913b167451270b00e96a4cc9ae3be77"},{"name":"outputs.tf","path":"modules/cloudtrail/outputs.tf","sha":"38190c8a3b1c5db0781a45a2965af7bd9e34deee"},{"name":"variables.tf","path":"modules/cloudtrail/variables.tf","sha":"2ca4ff6aafbd7b83227efed4dc38bbb13d911fca"}]},{"name":"cross-account-iam-roles","children":[{"name":"README.md","path":"modules/cross-account-iam-roles/README.md","sha":"36aabf3726b3ac7960d1d50102530b8cf77ee0d5"},{"name":"main.tf","path":"modules/cross-account-iam-roles/main.tf","sha":"15e594530e941271922a65800b01f40c8e3f462d"},{"name":"outputs.tf","path":"modules/cross-account-iam-roles/outputs.tf","sha":"4e4697d3c627fc668206d03557f8d58b3f391465"},{"name":"variables.tf","path":"modules/cross-account-iam-roles/variables.tf","sha":"d03ba0e2e2846b2b34f0ec612e31db7485f23bdc"}]},{"name":"custom-iam-entity","children":[{"name":"README.md","path":"modules/custom-iam-entity/README.md","sha":"98ab8129418c43978d46d58896b6e64172995aba"},{"name":"main.tf","path":"modules/custom-iam-entity/main.tf","sha":"d6f5ac7dff9465c6b2c814af9b7cb37aebd8affc"},{"name":"outputs.tf","path":"modules/custom-iam-entity/outputs.tf","sha":"b94249803e78991682b8542d8f39e5a728432b97"},{"name":"variables.tf","path":"modules/custom-iam-entity/variables.tf","sha":"ad93fc85d6d7c21bb348086a72406f08ccd07edb"}]},{"name":"fail2ban","children":[{"name":"README.md","path":"modules/fail2ban/README.md","sha":"2301349c1b8775809b7362189a72655ce58b26fb"},{"name":"install-scripts","children":[{"name":"cloudwatch-metric.conf","path":"modules/fail2ban/install-scripts/cloudwatch-metric.conf","sha":"f78f5f55f585a6efe60a51a2c0f41e4a63f99749"},{"name":"configure-fail2ban","path":"modules/fail2ban/install-scripts/configure-fail2ban","sha":"087af775cca6f4e5482ddbb550af6fbb773af1fb"},{"name":"fail2ban.local","path":"modules/fail2ban/install-scripts/fail2ban.local","sha":"8292c4a18c825bfbf0a8d52cfb2746aa43f76ca4"},{"name":"filters.sshd.amazon.conf","path":"modules/fail2ban/install-scripts/filters.sshd.amazon.conf","sha":"093bb1baf88a1e283a43b7dd7d04c64992abecc6"},{"name":"jail.amazon.local","path":"modules/fail2ban/install-scripts/jail.amazon.local","sha":"a0aef73873e461c46ff63a4a3e5166ad3453c5e3"},{"name":"jail.amazon2.local","path":"modules/fail2ban/install-scripts/jail.amazon2.local","sha":"7f0c82cc3e4f5e3e569f8bb902164f7dbd6a3dee"},{"name":"jail.ubuntu.local","path":"modules/fail2ban/install-scripts/jail.ubuntu.local","sha":"148543b26f543c3e37434736fba7d484ad176804"}]},{"name":"install.sh","path":"modules/fail2ban/install.sh","sha":"8f7b536f08506dabc2f6beb6cd5a50f7282168aa"},{"name":"user-data-scripts","children":[{"name":"configure-fail2ban-cloudwatch.sh","path":"modules/fail2ban/user-data-scripts/configure-fail2ban-cloudwatch.sh","sha":"4fd95e2fbcbc0da8ff2a6824c407a9b1ecd2a233"}]}]},{"name":"guardduty-multi-region","children":[{"name":"README.adoc","path":"modules/guardduty-multi-region/README.adoc","sha":"0c0833b9655d1d292f086b8f27c594ef1b968d68"},{"name":"main.tf","path":"modules/guardduty-multi-region/main.tf","sha":"1b990cf6aef7937f06d25030d15dd4b583948e5c"},{"name":"outputs.tf","path":"modules/guardduty-multi-region/outputs.tf","sha":"17ed87f6be722742d29aee0ef8e35a641a2ea54e"},{"name":"variables.tf","path":"modules/guardduty-multi-region/variables.tf","sha":"992199e9e968a3006918b286c7f3e69eb2fbbd74"}]},{"name":"guardduty","children":[{"name":"README.adoc","path":"modules/guardduty/README.adoc","sha":"8826f32664593d0cdc0ff4a7fd94e5cbf475478a"},{"name":"core-concepts.md","path":"modules/guardduty/core-concepts.md","sha":"2eab0fd6c0548ba11104b6d778eb224df5622886"},{"name":"main.tf","path":"modules/guardduty/main.tf","sha":"a07d8cd961e155ff81433f9c03736745e4017df7"},{"name":"outputs.tf","path":"modules/guardduty/outputs.tf","sha":"0fd6fdc76d8bc1bb4c544028c802248999d309f7"},{"name":"variables.tf","path":"modules/guardduty/variables.tf","sha":"e5c1e4b60f219d93e21a382bb3dad970977c9fcf"}]},{"name":"iam-groups","children":[{"name":"README.md","path":"modules/iam-groups/README.md","sha":"07820342d38caf90b08a1ff0df904298ed132c8f"},{"name":"_docs","children":[{"name":"iam-user-access-to-billing.png","path":"modules/iam-groups/_docs/iam-user-access-to-billing.png","sha":"063f6cf8dc766b4d44942de89660e8ab9e1f3d63"},{"name":"my-account.png","path":"modules/iam-groups/_docs/my-account.png","sha":"387320200ed756ce4191afef87f0ab76e2c3d89a"}]},{"name":"main.tf","path":"modules/iam-groups/main.tf","sha":"7f0328d9568d52bbaacf717ca00d6df54e12ea0f"},{"name":"outputs.tf","path":"modules/iam-groups/outputs.tf","sha":"0fc97269b51e6c51647aa5420198d1d11c5afa37"},{"name":"variables.tf","path":"modules/iam-groups/variables.tf","sha":"d54e229b070925f1c927090781333c20ae6d765f"}]},{"name":"iam-policies","children":[{"name":"README.md","path":"modules/iam-policies/README.md","sha":"0297e14a7dfdf5727d9be5ab4f47dcf67357b247"},{"name":"main.tf","path":"modules/iam-policies/main.tf","sha":"650bb81bc89e03b1f86de74e010c4454d2a5e146"},{"name":"outputs.tf","path":"modules/iam-policies/outputs.tf","sha":"19511cfc28b22103cb164c6df8b5b530e7e3e172"},{"name":"variables.tf","path":"modules/iam-policies/variables.tf","sha":"02a3add807a7878bc736a0a1aaa193ac42ee5b47"}]},{"name":"iam-user-password-policy","children":[{"name":"README.md","path":"modules/iam-user-password-policy/README.md","sha":"5bea6ba56fc796be5b860549156a3a251735fc2a"},{"name":"main.tf","path":"modules/iam-user-password-policy/main.tf","sha":"00372963f07a36d47ec3fc3489ab2446bd16893c"},{"name":"variables.tf","path":"modules/iam-user-password-policy/variables.tf","sha":"7c08eef88a7b13226cc4e18aa8338db64fdf83f0"}]},{"name":"iam-users","children":[{"name":"README.md","path":"modules/iam-users/README.md","sha":"eacb8c8dd745d047f3844e0b63573af66b8c1083","toggled":true},{"name":"main.tf","path":"modules/iam-users/main.tf","sha":"ce5f9dc0a4b152d1b48b66b387f57e1678258229"},{"name":"outputs.tf","path":"modules/iam-users/outputs.tf","sha":"4d053caccca2412befcf956c94e908b2d5c89054"},{"name":"variables.tf","path":"modules/iam-users/variables.tf","sha":"25e55a291fa64e63996f5baab05a2082b548cd41"}],"toggled":true},{"name":"ip-lockdown","children":[{"name":"README.md","path":"modules/ip-lockdown/README.md","sha":"af806e396600aed64922eac8a3c7ab29a90f858d"},{"name":"install.sh","path":"modules/ip-lockdown/install.sh","sha":"ce61af763bee9ad29754220ae24521f22c3a956f"},{"name":"ip-lockdown","path":"modules/ip-lockdown/ip-lockdown","sha":"93a0e1f5876e7de5778c595e8801d64986cb118b"}]},{"name":"kms-grant-multi-region","children":[{"name":"README.adoc","path":"modules/kms-grant-multi-region/README.adoc","sha":"8b31bdf6b848e87f10f3ae1a2d031ede038f52b9"},{"name":"core-concepts.md","path":"modules/kms-grant-multi-region/core-concepts.md","sha":"3eb1725fa927a84cc2a0341335d150bf5c6e70f5"},{"name":"main.tf","path":"modules/kms-grant-multi-region/main.tf","sha":"a60479e0d1cda7bee4aa298bcc7cffb5f9a275cb"},{"name":"outputs.tf","path":"modules/kms-grant-multi-region/outputs.tf","sha":"b9d84078afacb154536292bddba4afbd6c9158c2"},{"name":"variables.tf","path":"modules/kms-grant-multi-region/variables.tf","sha":"d27a8da6b13e1ea67a1b4721edd8bbe59781df7d"}]},{"name":"kms-master-key-multi-region","children":[{"name":"README.adoc","path":"modules/kms-master-key-multi-region/README.adoc","sha":"2bdf512e1f415dd833b7c5f9877ba63ab2ad1d08"},{"name":"main.tf","path":"modules/kms-master-key-multi-region/main.tf","sha":"b26c2077c9db8e93f20cac4e822591df0c75bd53"},{"name":"outputs.tf","path":"modules/kms-master-key-multi-region/outputs.tf","sha":"932a3ac2a94e4950267c55c115f1118328345bf3"},{"name":"variables.tf","path":"modules/kms-master-key-multi-region/variables.tf","sha":"0b4f0a416c2947f2ec3401322da98841988b5373"}]},{"name":"kms-master-key","children":[{"name":"README.md","path":"modules/kms-master-key/README.md","sha":"1b43a005494f12b05551adb020a31726f28e10d3"},{"name":"main.tf","path":"modules/kms-master-key/main.tf","sha":"f7f46bd32db555d88f728fe5a266ed13875c9a50"},{"name":"outputs.tf","path":"modules/kms-master-key/outputs.tf","sha":"4d0dbba81e8186243d96a8325a5f643d87543451"},{"name":"variables.tf","path":"modules/kms-master-key/variables.tf","sha":"3f0ec11202467bf3b5b79ce138d78efd1b47a737"}]},{"name":"ntp","children":[{"name":"README.md","path":"modules/ntp/README.md","sha":"c81ae3adf4d5af364729c5537414de1ada470af5"},{"name":"install.sh","path":"modules/ntp/install.sh","sha":"66f01538550459e770dde3d03b8c1ee705301b49"}]},{"name":"os-hardening","children":[{"name":"README.md","path":"modules/os-hardening/README.md","sha":"3e864b0e9208eb6809adf41968c51e02fc233ee1"},{"name":"_docs","children":[{"name":"Helpful Email.md","path":"modules/os-hardening/_docs/Helpful Email.md","sha":"246a0b80b29f5ff3d2b2f4c5c170fc927e2d9dd7"}]},{"name":"ami-builder","children":[{"name":"files","children":[{"name":"user-data.sh.template","path":"modules/os-hardening/ami-builder/files/user-data.sh.template","sha":"4a3c87a19e1a4caa20b9b425b2a02101566d1166"}]},{"name":"main.tf","path":"modules/os-hardening/ami-builder/main.tf","sha":"3561bfae1f5988023e825667e73cb835caa3df79"},{"name":"outputs.tf","path":"modules/os-hardening/ami-builder/outputs.tf","sha":"8ce2ee598124ca50dd530a33aa60f5d1452a4a2b"},{"name":"variables.tf","path":"modules/os-hardening/ami-builder/variables.tf","sha":"c5927cfcebf6781b8b920d8fd7872f2992bb1501"}]},{"name":"partition-scripts","children":[{"name":"README.md","path":"modules/os-hardening/partition-scripts/README.md","sha":"a2986f1ab8f7470d2ba71d5270e5217d64cb10a3"},{"name":"bin","children":[{"name":"cleanup-volume","path":"modules/os-hardening/partition-scripts/bin/cleanup-volume","sha":"c7cbf3ecebd915235238557d27a1ce25e6fc10fa"},{"name":"partition-volume","path":"modules/os-hardening/partition-scripts/bin/partition-volume","sha":"f4f8566a1ef6aa4ff0c0268bd28721488aa6dfc4"}]},{"name":"install.sh","path":"modules/os-hardening/partition-scripts/install.sh","sha":"606776c068260836e8612a681ff4e3edc8abdb41"}]}]},{"name":"private-s3-bucket","children":[{"name":"README.md","path":"modules/private-s3-bucket/README.md","sha":"5c5f9ce8b1ee7fc975c01f0785672c847ef6f00b"},{"name":"main.tf","path":"modules/private-s3-bucket/main.tf","sha":"9bbc4a5ad34fb65bcf09b1fabdb732de13481958"},{"name":"outputs.tf","path":"modules/private-s3-bucket/outputs.tf","sha":"f2ab2237674b888d45bbede9f9b6f0dafe7471ea"},{"name":"variables.tf","path":"modules/private-s3-bucket/variables.tf","sha":"875a61e121bc57f56a3bbefd36b649540e69a3b6"}]},{"name":"saml-iam-roles","children":[{"name":"README.md","path":"modules/saml-iam-roles/README.md","sha":"528798d6db316adb724cc295e043108a5c426854"},{"name":"main.tf","path":"modules/saml-iam-roles/main.tf","sha":"23bf01a0f85e31040aac200e3d8fe560fcb537b6"},{"name":"outputs.tf","path":"modules/saml-iam-roles/outputs.tf","sha":"c579901907b216c55e4c815d28f0a22171a960e6"},{"name":"variables.tf","path":"modules/saml-iam-roles/variables.tf","sha":"1f3f26ade9fd75d8e66ba12649f45d075b5e0f2b"}]},{"name":"ssh-grunt-selinux-policy","children":[{"name":"README.md","path":"modules/ssh-grunt-selinux-policy/README.md","sha":"8a934c81da696e32c365183b6a707594da99ba79"},{"name":"install.sh","path":"modules/ssh-grunt-selinux-policy/install.sh","sha":"3de871d61a9990e7f2c130f23afaf00daeb6bbef"},{"name":"ssh-grunt.pp","path":"modules/ssh-grunt-selinux-policy/ssh-grunt.pp","sha":"7c7050f812cd0e3cb34e37b88c35fb09f369be7d"},{"name":"ssh-grunt.te","path":"modules/ssh-grunt-selinux-policy/ssh-grunt.te","sha":"3317a71feaa633662a00b1dc05b1176cb85c9793"}]},{"name":"ssh-grunt","children":[{"name":".dockerignore","path":"modules/ssh-grunt/.dockerignore","sha":"a725465aee245635a2bd129af54858ed32c84cb8"},{"name":"Dockerfile","path":"modules/ssh-grunt/Dockerfile","sha":"3d1a6eb67de35573d8ec48bb6ac06b515f9a63d8"},{"name":"README.adoc","path":"modules/ssh-grunt/README.adoc","sha":"89e1ff7db5620809af182703c45f87601e59a766"},{"name":"_ci","children":[{"name":"build-and-test.sh","path":"modules/ssh-grunt/_ci/build-and-test.sh","sha":"903993de2d7bcde19d472fa5e510ee862d4b10c3"},{"name":"test.sh","path":"modules/ssh-grunt/_ci/test.sh","sha":"235603944316e81f1da1cc0248b80beecf99cb27"}]},{"name":"_docs","children":[{"name":"houston-upload-ssh-key.png","path":"modules/ssh-grunt/_docs/houston-upload-ssh-key.png","sha":"e32519497262f9796a4ea46c53953923975cbd7d"},{"name":"iam-upload-ssh-key.png","path":"modules/ssh-grunt/_docs/iam-upload-ssh-key.png","sha":"8bb1e793185eb0b4822023552899874394342f21"}]},{"name":"core-concepts.md","path":"modules/ssh-grunt/core-concepts.md","sha":"be3b64a930906b8b16412ccdc0fe9384079a2191"},{"name":"docker-compose.yml","path":"modules/ssh-grunt/docker-compose.yml","sha":"0609cfaadf18bb9eb8ff13459cf9f0f10928765e"},{"name":"go.mod","path":"modules/ssh-grunt/go.mod","sha":"33e7bfc12450f68fe0fc800d06248129ed229b9f"},{"name":"go.sum","path":"modules/ssh-grunt/go.sum","sha":"9c21e75d8e59393633a732fe8b646daedf4ac139"},{"name":"scripts","children":[{"name":"build-linux-binary.sh","path":"modules/ssh-grunt/scripts/build-linux-binary.sh","sha":"fc74dd9990e9f4526ae2e7cd13e338d4fd0f11c4"},{"name":"run.sh","path":"modules/ssh-grunt/scripts/run.sh","sha":"050027e034cd03e53625986eb0f331c043492cf6"}]},{"name":"src","children":[{"name":"cli.go","path":"modules/ssh-grunt/src/cli.go","sha":"f72f670dcf0ae2e0bcb8ed02e91c706a5e8c3be0"},{"name":"cli_test.go","path":"modules/ssh-grunt/src/cli_test.go","sha":"89c94ffdefb2e607fa005f028bdbd13b2f6c13f0"},{"name":"collections.go","path":"modules/ssh-grunt/src/collections.go","sha":"aa9b67f00f57088f9bf4e129dcc53003524dd0a7"},{"name":"cron.go","path":"modules/ssh-grunt/src/cron.go","sha":"4ceb8efd0cdf51b5170bb152b6824fc54f8d429c"},{"name":"cron_test.go","path":"modules/ssh-grunt/src/cron_test.go","sha":"4b87577a1cc2b8dbff08457d60bbc96546149174"},{"name":"errors.go","path":"modules/ssh-grunt/src/errors.go","sha":"03c89804638ecc45fdcd0a0aeaed9ea5f605940b"},{"name":"file.go","path":"modules/ssh-grunt/src/file.go","sha":"eb991fd15ac2c3660313e6d4c5669b36ccc9cc21"},{"name":"groups.go","path":"modules/ssh-grunt/src/groups.go","sha":"49e569a80abb6306ab0f7fd79c810d2e2ad8ab3a"},{"name":"groups_test.go","path":"modules/ssh-grunt/src/groups_test.go","sha":"7e54ba9b640b07605ae959de086fc6998861e311"},{"name":"houston.go","path":"modules/ssh-grunt/src/houston.go","sha":"e9db062f2cb815b49e4df754427ae286e4d163d4"},{"name":"houston_test.go","path":"modules/ssh-grunt/src/houston_test.go","sha":"82a9b2d2d41e09b6949897ed989a483fc7e0a650"},{"name":"iam.go","path":"modules/ssh-grunt/src/iam.go","sha":"dafbc8fbb732d2d6212cade786eb13d7215b9862"},{"name":"iam_test.go","path":"modules/ssh-grunt/src/iam_test.go","sha":"79a55543a72baf93bbac7140d89226e3fd7ab133"},{"name":"logger.go","path":"modules/ssh-grunt/src/logger.go","sha":"93095ba8216709b3178fcc44a76421a765f4e302"},{"name":"main.go","path":"modules/ssh-grunt/src/main.go","sha":"a89d9402d32d371dc9b945ab9c72996808d17b85"},{"name":"shell.go","path":"modules/ssh-grunt/src/shell.go","sha":"7f49eeee4119efde0bd58d7c78fd4ef785dc5f6c"},{"name":"ssh.go","path":"modules/ssh-grunt/src/ssh.go","sha":"8e6b62d6c33279aaf5af6cabacd0afc4d186ca97"},{"name":"ssh_test.go","path":"modules/ssh-grunt/src/ssh_test.go","sha":"7500d8fd85ef74758501f6952be45cb523e29cd1"},{"name":"string.go","path":"modules/ssh-grunt/src/string.go","sha":"fc61ca9625f9d654c2b3576ff932db1b90ae9dfe"},{"name":"string_test.go","path":"modules/ssh-grunt/src/string_test.go","sha":"78bf08d239079c9c985d40da1cc9bcdcb4c0bc5d"},{"name":"sync.go","path":"modules/ssh-grunt/src/sync.go","sha":"7c2f9ff292b484a7ca1ab14e1bbd558cd24553f2"},{"name":"sync_test.go","path":"modules/ssh-grunt/src/sync_test.go","sha":"2ddb07aedec67d1698af022e4e1391ea60636f9e"},{"name":"url.go","path":"modules/ssh-grunt/src/url.go","sha":"0af5ddc5f3e27af95d6f6ddd41acf0c229962f7f"},{"name":"url_test.go","path":"modules/ssh-grunt/src/url_test.go","sha":"606974cac1eee3f309a951c1d9e11ed389088836"},{"name":"users.go","path":"modules/ssh-grunt/src/users.go","sha":"6c3a8a22006a91656fcc5fd31d684271cdf129e3"},{"name":"users_test.go","path":"modules/ssh-grunt/src/users_test.go","sha":"fdd9f7f99466c223b9abdd4951147c8febc0b3fb"}]}]},{"name":"ssh-iam","children":[{"name":"README.md","path":"modules/ssh-iam/README.md","sha":"4aa06d6a729e53384b6d2a43c06ee38807092f32"}]},{"name":"ssm-healthchecks-iam-permissions","children":[{"name":"README.md","path":"modules/ssm-healthchecks-iam-permissions/README.md","sha":"005260025ae51ed9e13f1b6c6f9d737a02d5db68"},{"name":"main.tf","path":"modules/ssm-healthchecks-iam-permissions/main.tf","sha":"0da24e8a2e1247966b08d3985ca0a8bdf84ecce9"},{"name":"variables.tf","path":"modules/ssm-healthchecks-iam-permissions/variables.tf","sha":"36778c58999e05f20468d118f22e8c9d754b1a4d"}]},{"name":"tls-cert-private","children":[{"name":"Dockerfile","path":"modules/tls-cert-private/Dockerfile","sha":"2d8683d51957cb17ffef180dd57b43651b1e9d23"},{"name":"README.md","path":"modules/tls-cert-private/README.md","sha":"c6996ec25d7d9b1ab4f79d8164a14e86e1ac844f"},{"name":"docker-compose.yml","path":"modules/tls-cert-private/docker-compose.yml","sha":"f872026e8d51ceaab2e1c11cc9cf9c35ba81f29c"},{"name":"files","children":[{"name":"openssl.cnf","path":"modules/tls-cert-private/files/openssl.cnf","sha":"2542542c80ab180c47d3e0a27dbded65bed572de"}]},{"name":"scripts","children":[{"name":"generate-ca-keypair.sh","path":"modules/tls-cert-private/scripts/generate-ca-keypair.sh","sha":"395ee97c0e499c660efac5c5cf1f79dfcdbb69f8"},{"name":"generate-tls-keypair.sh","path":"modules/tls-cert-private/scripts/generate-tls-keypair.sh","sha":"f1c3577437fd589087704a9c003de416cb87d232"},{"name":"main.sh","path":"modules/tls-cert-private/scripts/main.sh","sha":"dc7af965ffb783bbef449010818e69294fa2ef75"}]}]}],"toggled":true},{"name":"test","children":[{"name":"README.md","path":"test/README.md","sha":"b44e2152ea21d65a8c51bb58321e18ec7527c22e"},{"name":"common","children":[{"name":"test_helpers.go","path":"test/common/test_helpers.go","sha":"d42b5149d99dd3fce84a7cef158a8cea44be3c99"}]},{"name":"go.mod","path":"test/go.mod","sha":"f89000aa7b89d75f19bb6cbe600bdc6643b5d4da"},{"name":"go.sum","path":"test/go.sum","sha":"a9bb6350331b345bf2c2e485ce60a79647c7f9e5"},{"name":"landingzone","children":[{"name":"account_baseline_test.go","path":"test/landingzone/account_baseline_test.go","sha":"2e79014b70907d5d5e585c242b948b5457b3cb87"},{"name":"aws_config_rules_test.go","path":"test/landingzone/aws_config_rules_test.go","sha":"b27f3d36432250dbc681386dbd673db086f1d96f"},{"name":"aws_config_test.go","path":"test/landingzone/aws_config_test.go","sha":"15cc48ac8174a753ed353d61a9582bd3d495fe88"},{"name":"aws_organizations_test.go","path":"test/landingzone/aws_organizations_test.go","sha":"b8b2a9d87d27b48adf3190d9254fe565e27e2834"},{"name":"guardduty_test.go","path":"test/landingzone/guardduty_test.go","sha":"bbaeb7b991d27e915828f1cf96c9dc23f270205a"},{"name":"kms_grant_multiregion_test.go","path":"test/landingzone/kms_grant_multiregion_test.go","sha":"2a663a74f3a6052503d966e6727b9fd289db7b48"},{"name":"kms_master_key_multiregion_test.go","path":"test/landingzone/kms_master_key_multiregion_test.go","sha":"4f718b41f6f1f0d4c1a0daded1a42f1bdf99993b"},{"name":"test_helpers.go","path":"test/landingzone/test_helpers.go","sha":"09aaf2f51de76d47732b36b6347407841519c28b"}]},{"name":"security","children":[{"name":"auto_update_test.go","path":"test/security/auto_update_test.go","sha":"c55fc7bde4cdd3ff7301d6b066133a3b00393677"},{"name":"cloudtrail_test.go","path":"test/security/cloudtrail_test.go","sha":"b227aab5838e6c93441f7b649b907a9416ee68a5"},{"name":"cross_account_iam_roles_test.go","path":"test/security/cross_account_iam_roles_test.go","sha":"889923cccfaf4775a15a0e500a810bc78fafd55f"},{"name":"custom_iam_entity_test.go","path":"test/security/custom_iam_entity_test.go","sha":"514a06c2e5bab3c0537b67e9c75e33629248cfcd"},{"name":"fail2ban_test.go","path":"test/security/fail2ban_test.go","sha":"c3b6c726e455bf9fc35fa76bb880c19820cf22d8"},{"name":"iam_groups_test.go","path":"test/security/iam_groups_test.go","sha":"e0a7ae52a0b0edcb1aee42db4eff686c994f263b"},{"name":"iam_ssm_test.go","path":"test/security/iam_ssm_test.go","sha":"20268ac744df04c901a1cbf81d042c1f535e5371"},{"name":"iam_user_password_policy_test.go","path":"test/security/iam_user_password_policy_test.go","sha":"e6eea3e767a427352fe9f0226e7fa3c39ed338d6"},{"name":"iam_users_test.go","path":"test/security/iam_users_test.go","sha":"d71b6d7f8f215a05afbd84e5043fe5b0baf9f012"},{"name":"ip-lockdown-test-scripts","children":[{"name":"allow-several-users.sh","path":"test/security/ip-lockdown-test-scripts/allow-several-users.sh","sha":"2f75dbe0880ed0907b43db58b6ac030a0d0e9bd4"},{"name":"common.sh","path":"test/security/ip-lockdown-test-scripts/common.sh","sha":"cdfe11aca76607a4feaf254a394f32273b738c5c"},{"name":"index.html","path":"test/security/ip-lockdown-test-scripts/index.html","sha":"557db03de997c86a4a028e1ebd3a1ceb225be238"},{"name":"restrict-all-users.sh","path":"test/security/ip-lockdown-test-scripts/restrict-all-users.sh","sha":"a37c1ffc90f2532e7cc3f9f5a859b75c98661dc6"},{"name":"restrict-one-user.sh","path":"test/security/ip-lockdown-test-scripts/restrict-one-user.sh","sha":"4214e1c15102f4568d1e995aa82add46ee430237"},{"name":"sanity-check.sh","path":"test/security/ip-lockdown-test-scripts/sanity-check.sh","sha":"542ed72f4f0952ace67c9cbf2e5ac07e81e6870c"}]},{"name":"ip_lockdown_test.go","path":"test/security/ip_lockdown_test.go","sha":"14d5236b574215f568131ba7f915ba2812d92c55"},{"name":"kms_master_key_test.go","path":"test/security/kms_master_key_test.go","sha":"b9addac57172419069956f4fb2db8424d32fa2ff"},{"name":"ntp_test.go","path":"test/security/ntp_test.go","sha":"38c92a6ecc39a49629d6ff2f072e849da17ff2ec"},{"name":"os_hardening_test.go","path":"test/security/os_hardening_test.go","sha":"c50ac78e1b70a8b1cea2ac4b56de433795ef3a1e"},{"name":"private_s3_bucket_test.go","path":"test/security/private_s3_bucket_test.go","sha":"e651e78d37b1227e207a518142acb93c8c0e8486"},{"name":"saml_iam_roles_test.go","path":"test/security/saml_iam_roles_test.go","sha":"c74cf88af9132ddd9f1a587f5182594f388326d8"},{"name":"ssh_grunt_houston_test.go","path":"test/security/ssh_grunt_houston_test.go","sha":"d5f07e8ffc33add2341d2a6a4f39fbff1ad3d8c6"},{"name":"ssh_grunt_iam_test.go","path":"test/security/ssh_grunt_iam_test.go","sha":"c0d79bc56c1c6206f135473df19a0a50a2fb9a3c"},{"name":"test_helpers.go","path":"test/security/test_helpers.go","sha":"fcd91c0059f4ab6701db6368fc2acda8b9d1dd60"},{"name":"test_helpers_aws_auth.go","path":"test/security/test_helpers_aws_auth.go","sha":"de42c70f5e1b875f994b433cf94f1ff6bacc7de7"},{"name":"tls_cert_private_test.go","path":"test/security/tls_cert_private_test.go","sha":"455501c058664b1066381be8c1423e68ba436fdf"}]}]}]},"detailsContent":"<h1 class=\"preview__body--title\" id=\"iam-users\">IAM Users</h1><div class=\"preview__body--border\"></div><p>This is a Terraform module you can use to create and manage\n<a href=\"https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users.html\" class=\"preview__body--description--blue\" target=\"_blank\">IAM users</a> as code.</p>\n<h2 class=\"preview__body--subtitle\" id=\"how-do-you-use-this-module\">How do you use this module?</h2>\n<p>This module allows you to pass in a map of users to create, where the keys in the map are the user names, and the\nvalues are the following properties for that IAM user (all optional):</p>\n<ul>\n<li><code>groups</code>: a list of IAM groups to add the user to.</li>\n<li><code>tags</code>: a map of tags to apply to the user.</li>\n<li><code>pgp_key</code>: either a base-64 encoded PGP public key, or a <a href=\"https://keybase.io\" class=\"preview__body--description--blue\" target=\"_blank\">Keybase</a> username in the form\n<code>keybase:<USERNAME></code>, used to encrypt the user's credentials. Required if <code>create_login_profile</code> or\n<code>create_access_keys</code> is true.</li>\n<li><code>create_login_profile</code>: if set to true, create a password for this user that can be used to login to the AWS Web\nConsole. The password will be encrypted using <code>pgp_key</code>, so it will NOT be stored in plain text in Terraform state.</li>\n<li><code>create_access_keys</code>: if set to true, create access keys for this user that can be used to authenticate to AWS\nprogrammatically. The secret access key will be encrypted using <code>pgp_key</code>, so it will NOT be stored in plain text in\nTerraform state.</li>\n<li><code>path</code>: the path for the IAM user</li>\n<li><code>permissions_boundary</code>: the ARN of the policy that is used to set the permissions boundary for the user.</li>\n<li><code>ssh_public_key</code>: the public part of the user's SSH key that will be added to their security credentials (e.g., for use with <code>ssh-grunt</code>). Currently only supports keys in ssh-rsa format"</li>\n</ul>\n<p>Check out the <a href=\"/repos/v0.38.2/module-security/examples/iam-users\" class=\"preview__body--description--blue\">iam-users example</a> for working sample code.</p>\n<h2 class=\"preview__body--subtitle\" id=\"how-do-you-generate-passwords-and-access-keys-with-this-module\">How do you generate passwords and access keys with this module?</h2>\n<p>This module can optionally create a password for AWS Web Console access and/or access keys for programmatic access for\neach IAM user if you set <code>create_login_profile</code> and/or <code>create_access_keys</code> to <code>true</code> for that IAM user, respectively.</p>\n<p>To avoid having these secrets stored in plain text in Terraform state, this module will only generate the password or\naccess keys if you specify the <code>pgp_key</code> param for that user. This param can contain either the base-64 encoded PGP\npublic key for that user or the user's Keybase username in the format <code>keybase:<USERNAME></code>.</p>\n<p>We recommend using Keybase, as it makes it easier to manage PGP keys. Have each user at your company:</p>\n<ol>\n<li><a href=\"https://keybase.io/download\" class=\"preview__body--description--blue\" target=\"_blank\">Install the Keybase app</a>.</li>\n<li>Claim a Keybase username.</li>\n<li>Use the Keybase app to create a PGP key and add it to their profile.</li>\n<li>Send you their username.</li>\n</ol>\n<p>Once you have their user name, set <code>pgp_key = "keybase:<USERNAME>"</code> and <code>create_login_profile</code> and/or\n<code>create_access_keys</code> to <code>true</code> for that user, and this module will generate the password and/or access keys, and\nexport them in the output variables <code>user_passwords</code> and <code>user_access_keys</code>. The output will look something like this:</p>\n<pre>user_access_keys = {\n <span class=\"hljs-string\">\"alice\"</span> = {\n <span class=\"hljs-string\">\"access_key_id\"</span> = <span class=\"hljs-string\">\"AKIARIUU2OIYE2APGOYK\"</span>\n <span class=\"hljs-string\">\"secret_access_key\"</span> = <span class=\"hljs-string\">\"wcBMA7E6Kn/t1YPfAQgAjLvUWUES/GeLHr/==\"</span>\n }\n}\nuser_passwords = {\n <span class=\"hljs-string\">\"bob\"</span> = <span class=\"hljs-string\">\"wcBMA7E6Kn/t1YPfAQgAdByWFftehuD3uw=\"</span>\n}\n</pre>\n<p>You can see that Alice's <code>secret_access_key</code> and Bob's password are encrypted, so you can safely mail those credentials\nto each user.</p>\n<h3 class=\"preview__body--subtitle\" id=\"how-do-you-decrypt-the-generated-passwords-and-access-keys\">How do you decrypt the generated passwords and access keys?</h3>\n<p>To decrypt a user's password or access keys, that user can decrypt them on the command-line as follows:</p>\n<pre>echo <span class=\"hljs-string\">\"<SECRET>\"</span> | <span class=\"hljs-type\">base64</span> --decode | <span class=\"hljs-type\">keybase</span> pgp decrypt\n</pre>\n<p>Note that this only works if the user has the private key for their PGP key on their local computer (which they will\nif they used the Keybase app to create the PGP key in the first place).</p>\n","repoName":"module-security","repoRef":"v0.38.1","serviceDescriptor":{"serviceName":"IAM Users","serviceRepoName":"module-security","serviceRepoOrg":"gruntwork-io","serviceMainReadmePath":"/modules/iam-users","cloudProviders":["aws"],"description":"Create and manage IAM users, IAM groups, IAM roles, and IAM policies as code.","imageUrl":"grunt.png","licenseType":"subscriber","technologies":["Terraform"],"compliance":[],"tags":[""]},"serviceCategoryName":"Landing Zone","fileName":"README.md","filePath":"/modules/iam-users","title":"Repo Browser: IAM Users","description":"Browse the repos in the Gruntwork Infrastructure as Code Library."}
.circleci
main.tf
