Slide 7
Slide 7 text
ワークフォースユーザ‧グループを作って、Permission Set を割り当てる 7
permission_sets = {
"read_only_user" = {
name = "ReadOnlyAccess"
policy_arn =
"arn:aws:iam::aws:policy/ReadOnlyAccess"
is_managed = true
session_duration = "PT8H"
}
"work_user" = {
name = "WorkUserPolicy"
is_managed = false
session_duration = "PT8H"
}
}
assignments = [
{
account_id =
local.accounts.hogehoge.account_id
group = "workusers"
permission_set = " read_only_user"
},
{
account_id =
local.accounts.hogehoge.account_id
group = "workusers"
permission_set = " work_user"
},
]