- extract-patterns.js: mines layered arch, ArgoCD appsets, cloud regions, CIDR allocations, naming conventions, sync waves, tech stack from code - agent-kb.js: token-efficient JSON rendering of same doc tree - eval-confluence-ref-questions.json: 32 reference-only benchmark questions - wiggum-v2.sh: Ralph Wiggum loop targeting confluence baseline (77.8%) - docs/human-ux-spec.md: BMad UX designer spec for human doc structure - Eval results: V2 at 28.7% vs confluence 77.8% baseline - Hub/spoke ownership now correctly extracted (95% on that question) - Naming conventions, regions, CIDRs surfaced in system-architecture.md
103 lines
11 KiB
Markdown
103 lines
11 KiB
Markdown
# Terraform: runtime/cloud-iam/aws/china/identity-center
|
|
|
|
## Requirements
|
|
|
|
| Name | Version |
|
|
|------|---------|
|
|
| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >=1.3.0 |
|
|
| <a name="requirement_aws"></a> [aws](#requirement\_aws) | 5.47.0 |
|
|
|
|
## Providers
|
|
|
|
| Name | Version |
|
|
|------|---------|
|
|
| <a name="provider_aws"></a> [aws](#provider\_aws) | 5.47.0 |
|
|
| <a name="provider_null"></a> [null](#provider\_null) | n/a |
|
|
|
|
## Modules
|
|
|
|
No modules.
|
|
|
|
## Resources
|
|
|
|
| Name | Type |
|
|
|------|------|
|
|
| [aws_iam_policy.dynamodb_insights_rw](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/iam_policy) | resource |
|
|
| [aws_identitystore_group.Team-ACE](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/identitystore_group) | resource |
|
|
| [aws_identitystore_group.Team-Eng-CloudInterfaces](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/identitystore_group) | resource |
|
|
| [aws_ssoadmin_account_assignment.Read_only_assigment](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_account_assignment) | resource |
|
|
| [aws_ssoadmin_account_assignment.team_eng_cloudinterfaces_assigment1](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_account_assignment) | resource |
|
|
| [aws_ssoadmin_account_assignment.team_eng_cloudinterfaces_assigment2](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_account_assignment) | resource |
|
|
| [aws_ssoadmin_account_assignment.team_eng_cloudinterfaces_assigment3](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_account_assignment) | resource |
|
|
| [aws_ssoadmin_account_assignment.team_eng_cloudinterfaces_assigment4](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_account_assignment) | resource |
|
|
| [aws_ssoadmin_customer_managed_policy_attachment.name](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_customer_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_managed_policy_attachment.team_ace_cloudwatch_managed_policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_managed_policy_attachment.team_ace_managed_policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_managed_policy_attachment.team_eng_cloudinterfaces_cloudwatch_managed_policy_attachment_cloudwatch_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_managed_policy_attachment.team_eng_cloudinterfaces_managed_policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_managed_policy_attachment.team_eng_cloudinterfaces_servicequota_policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_managed_policy_attachment) | resource |
|
|
| [aws_ssoadmin_permission_set.team_ace_permission_set](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_permission_set) | resource |
|
|
| [aws_ssoadmin_permission_set.team_eng_cloudinterfaces_permission_set](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/resources/ssoadmin_permission_set) | resource |
|
|
| [null_resource.add_existing_user_to_group](https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource) | resource |
|
|
| [null_resource.add_existing_user_to_team_eng-cloud_interfaces](https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource) | resource |
|
|
| [aws_iam_policy.admin](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.administrator](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.apigtwy_admin](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.billing](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.cloudtrail_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.cloudwatch_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.cloudwatchlogs_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.cloudwatchlogs_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.cognito_poweruser](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.container_builds](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.datapipeline_fullaccess](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.ddb_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.eb_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.ec2_containerregistry_fullaccess](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.ecs_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.efs_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.elb_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.glacier_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.iam_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.lambda_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.marketplace_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.neptune_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.org_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.rds_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.rds_monitoring](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.rds_perfinsights_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.rds_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.readonly_access](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.s3_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.s3_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.servicequotas_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.sns_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.sqs_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.sqs_ro](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.stepfunction_full](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.support_access](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.view_only](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_iam_policy.viewonly](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/iam_policy) | data source |
|
|
| [aws_ssoadmin_instances.sso_instances](https://registry.terraform.io/providers/hashicorp/aws/5.47.0/docs/data-sources/ssoadmin_instances) | data source |
|
|
|
|
## Inputs
|
|
|
|
| Name | Description | Type | Default | Required |
|
|
|------|-------------|------|---------|:--------:|
|
|
| <a name="input_account_id"></a> [account\_id](#input\_account\_id) | n/a | `string` | `"273242175428"` | no |
|
|
| <a name="input_bucket"></a> [bucket](#input\_bucket) | n/a | `string` | `"terraform-state-cloud-iam"` | no |
|
|
| <a name="input_existing_user_name"></a> [existing\_user\_name](#input\_existing\_user\_name) | n/a | `string` | n/a | yes |
|
|
| <a name="input_external_id"></a> [external\_id](#input\_external\_id) | n/a | `string` | `"Temp@9865"` | no |
|
|
| <a name="input_identity_store_id"></a> [identity\_store\_id](#input\_identity\_store\_id) | n/a | `string` | `"d-8267225077"` | no |
|
|
| <a name="input_principal_group_id"></a> [principal\_group\_id](#input\_principal\_group\_id) | n/a | `string` | `"b1a20ad6-80b1-7036-b6a2-8002bac0dd16"` | no |
|
|
| <a name="input_principal_group_id_team_eng_cloudinterfaces"></a> [principal\_group\_id\_team\_eng\_cloudinterfaces](#input\_principal\_group\_id\_team\_eng\_cloudinterfaces) | n/a | `string` | `"31129a16-80e1-7070-edf5-0f18fc9e8e4c"` | no |
|
|
| <a name="input_region"></a> [region](#input\_region) | n/a | `string` | `"cn-northwest-1"` | no |
|
|
| <a name="input_role_arn"></a> [role\_arn](#input\_role\_arn) | n/a | `string` | `"arn:aws-cn:iam::273242175428:role/Terraform-IAM-Role"` | no |
|
|
|
|
## Outputs
|
|
|
|
| Name | Description |
|
|
|------|-------------|
|
|
| <a name="output_group_id"></a> [group\_id](#output\_group\_id) | n/a |
|
|
| <a name="output_user_id"></a> [user\_id](#output\_user\_id) | n/a |
|