forked from sysdiglabs/terraform-aws-secure-for-cloud
-
Notifications
You must be signed in to change notification settings - Fork 0
/
main.tf
34 lines (28 loc) · 1015 Bytes
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
provider "aws" {
alias = "cloudvision"
region = var.org_cloudvision_account_region
assume_role {
role_arn = "arn:aws:iam::${var.org_cloudvision_account_id}:role/OrganizationAccountAccessRole"
}
}
#-------------------------------------
# cloudvision submodules
#-------------------------------------
module "cloudtrail_organizational" {
source = "./modules/cloudtrail_organizational"
cloudvision_account_id = var.org_cloudvision_account_id
is_multi_region_trail = var.cloudtrail_org_is_multi_region_trail
cloudtrail_kms_enable = var.cloudtrail_org_kms_enable
tags = var.tags
}
module "services" {
source = "./modules/services"
providers = {
aws = aws.cloudvision
}
sysdig_secure_endpoint = var.sysdig_secure_endpoint
sysdig_secure_api_token = var.sysdig_secure_api_token
cloudtrail_sns_topic_arn = module.cloudtrail_organizational.sns_topic_arn
services_assume_role_arn = aws_iam_role.cloudvision_role.arn
tags = var.tags
}