mirror of
https://github.com/auricom/home-cluster.git
synced 2025-10-02 08:47:17 +02:00
38 lines
831 B
HCL
38 lines
831 B
HCL
resource "aws_s3_bucket" "volsync" {
|
|
bucket = "volsync"
|
|
acl = "private"
|
|
}
|
|
|
|
resource "aws_iam_user" "volsync_user" {
|
|
name = "volsync"
|
|
}
|
|
|
|
resource "aws_iam_policy" "volsync_private" {
|
|
name = "volsync_private"
|
|
description = "Policy for volsync user to access volsync bucket"
|
|
|
|
policy = jsonencode({
|
|
Version = "2012-10-17",
|
|
Statement = [
|
|
{
|
|
Action = [
|
|
"s3:ListBucket",
|
|
"s3:PutObject",
|
|
"s3:GetObject",
|
|
"s3:DeleteObject"
|
|
],
|
|
Effect = "Allow",
|
|
Resource = [
|
|
"arn:aws:s3:::volsync/*",
|
|
"arn:aws:s3:::volsync"
|
|
]
|
|
}
|
|
]
|
|
})
|
|
}
|
|
|
|
resource "aws_iam_user_policy_attachment" "volsync_user_policy_attachment" {
|
|
user = aws_iam_user.volsync_user.name
|
|
policy_arn = aws_iam_policy.volsync_private.arn
|
|
}
|