From 800911655c1972ca03e520236d8a312fe6350b75 Mon Sep 17 00:00:00 2001
From: Anthony Zawacki <anthony.c.zawacki@census.gov>
Date: Wed, 13 Sep 2023 14:38:26 -0400
Subject: [PATCH] assume_saml is never used.

---
 saml.tf | 26 --------------------------
 1 file changed, 26 deletions(-)
 delete mode 100644 saml.tf

diff --git a/saml.tf b/saml.tf
deleted file mode 100644
index 22c1f74..0000000
--- a/saml.tf
+++ /dev/null
@@ -1,26 +0,0 @@
-# because we can't link into remote state from the parent account, we have to use this
-# also, there is no data source for saml provider
-
-locals {
-  saml_provider_arn = format(local.common_arn, "iam", "saml-provider/Census_TCO_IDMS")
-  saml_url          = var.aws_environment == "gov" ? "https://signin.amazonaws-us-gov.com/saml" : "https://signin.aws.amazon.com/saml"
-}
-
-data "aws_iam_policy_document" "saml_assume" {
-  statement {
-    sid     = "SAMLFederationCensusIdP"
-    effect  = "Allow"
-    actions = ["sts:AssumeRoleWithSAML"]
-
-    principals {
-      type        = "Federated"
-      identifiers = [local.saml_provider_arn]
-    }
-
-    condition {
-      test     = "StringEquals"
-      variable = "SAML:aud"
-      values   = [local.saml_url]
-    }
-  }
-}