mirror of
https://github.com/ghndrx/terraform-foundation.git
synced 2026-02-10 06:45:06 +00:00
Greg Hendrickson
6136cde9bb
Enterprise-grade multi-tenant AWS cloud foundation. Modules: - GitHub OIDC for keyless CI/CD authentication - IAM account settings and security baseline - AWS Config Rules for compliance - ABAC (Attribute-Based Access Control) - SCPs (Service Control Policies) Features: - Multi-account architecture - Cost optimization patterns - Security best practices - Comprehensive documentation Tech: Terraform, AWS Organizations, IAM Identity Center
27 lines
764 B
HCL
27 lines
764 B
HCL
################################################################################
|
|
# SCPs - Outputs
|
|
################################################################################
|
|
|
|
output "policy_ids" {
|
|
value = { for k, v in aws_organizations_policy.this : k => v.id }
|
|
description = "Map of SCP names to policy IDs"
|
|
}
|
|
|
|
output "policy_arns" {
|
|
value = { for k, v in aws_organizations_policy.this : k => v.arn }
|
|
description = "Map of SCP names to policy ARNs"
|
|
}
|
|
|
|
output "enabled_policies" {
|
|
value = keys(local.scps)
|
|
description = "List of enabled SCP policy names"
|
|
}
|
|
|
|
output "attachment_count" {
|
|
value = {
|
|
ous = length(var.target_ous)
|
|
accounts = length(var.target_accounts)
|
|
}
|
|
description = "Count of SCP attachments"
|
|
}
|