IAM User
π¦ Overviewβ
This Terraform module provisions a basic AWS IAM user with optional path and environment-based tagging.
Itβs ideal for developers, service accounts, or automation pipelines that require secure identity provisioning with optional credential access.
β Key Featuresβ
- Creates a unique IAM user identity
- Supports optional IAM path and environment tagging
- Configurable for use with programmatic access or login credentials
- Extendable with policy or group attachment
πΌ Use Casesβ
- Provisioning users for internal developers or engineers
- Creating service identities for CI/CD workflows
- Lightweight identity setup for segregated permissions
- Testing new IAM policies with non-admin users
π₯ Input Variablesβ
| Name | Type | Description |
|---|---|---|
| region | string | AWS region for the IAM user deployment |
| user_name | string | The name to assign to the IAM user |
| path | string | (Optional) Path for organizing the user in IAM (e.g., /engineering/) |
| environment | string | Tag to specify the deployment environment (e.g., dev, staging, prod) |
π€ Outputsβ
| Name | Description |
|---|---|
| user_name | The name of the created IAM user |
| user_arn | The ARN of the IAM user |
π Deployment Readinessβ
- β Compatible with Terraform 1.0+
- β Tested with AWS provider 5.x
- π§ͺ Requires IAM permissions to create and manage IAM users
π οΈ Example Usageβ
module "iam-user-deployment" {
source = "git::ssh://git@github.com/archiphire/aws-level-1-modules.git//identity/iam-user?ref=v1.0.0"
region = "us-east-1"
user_name = "developer1"
path = "/engineering/"
environment = "dev"
}
terraform init
terraform plan
terraform apply
or
tofu init
tofu plan
tofu apply
π§Ή Cleanup Optionsβ
Terraform Destroy (for test environments):
terraform destroy
or
tofu destroy
Manual Deletion (production):
aws iam delete-user --user-name developer1
Only recommended after removing any attached policies, keys, or login profiles.
π‘οΈ Notesβ
This is a Level 1 identity module for lightweight user creation. To assign permissions, pair with:
iam-policy-inline iam-group iam-role-basic
π Deployment Package Noticeβ
This module is part of the Level 1 AWS License Tier. To access the full deployment package and source code, subscribe to Archiphire.