From 3ef4592e9581688758f945517174f711968da6ef Mon Sep 17 00:00:00 2001 From: badra001 Date: Mon, 9 May 2022 16:42:08 -0400 Subject: [PATCH] add missing max_session_duration --- common/defaults.tf | 4 ++++ flowlogs-role/README.md | 1 + flowlogs-role/main.tf | 2 +- flowlogs-role/outputs.tf | 5 +++++ 4 files changed, 11 insertions(+), 1 deletion(-) diff --git a/common/defaults.tf b/common/defaults.tf index 5b39070..263025b 100644 --- a/common/defaults.tf +++ b/common/defaults.tf @@ -47,5 +47,9 @@ locals { "peers" = [] } "transit-gateway-environments" = ["services", "dev", "test", "stage", "prod", "cre"] + "role" = { + "force_detach_policies" = false + "max_session_duration" = 3600 + } } } diff --git a/flowlogs-role/README.md b/flowlogs-role/README.md index 57e7a59..d85c1f1 100644 --- a/flowlogs-role/README.md +++ b/flowlogs-role/README.md @@ -66,3 +66,4 @@ No modules. | Name | Description | |------|-------------| | [role\_arn](#output\_role\_arn) | Created flowlogs role ARN | +| [role\_name](#output\_role\_name) | Created flowlogs role name | diff --git a/flowlogs-role/main.tf b/flowlogs-role/main.tf index cf9d04e..63a6898 100644 --- a/flowlogs-role/main.tf +++ b/flowlogs-role/main.tf @@ -56,7 +56,7 @@ resource "aws_iam_role" "role" { name = local.role_name description = local.role_description force_detach_policies = local._defaults["force_detach_policies"] - max_session_duration = var.max_session_duration + max_session_duration = local._defaults["role"]["max_session_duration"] assume_role_policy = data.aws_iam_policy_document.flowlogs_assume.json lifecycle { diff --git a/flowlogs-role/outputs.tf b/flowlogs-role/outputs.tf index 8f5622a..9a931b5 100644 --- a/flowlogs-role/outputs.tf +++ b/flowlogs-role/outputs.tf @@ -2,3 +2,8 @@ output "role_arn" { description = "Created flowlogs role ARN" value = aws_iam_role.role.arn } + +output "role_name" { + description = "Created flowlogs role name" + value = aws_iam_role.role.name +}