Files
dev-intel-v2/foxtrot-docs-v3/reference/terraform/runtime-cloud-iam-aws-reltio-organization-839943396013.md
Jarvis Prime 0265ec7a60 feat: confluence benchmark, pattern extractor, agent KB, UX spec
- extract-patterns.js: mines layered arch, ArgoCD appsets, cloud regions,
  CIDR allocations, naming conventions, sync waves, tech stack from code
- agent-kb.js: token-efficient JSON rendering of same doc tree
- eval-confluence-ref-questions.json: 32 reference-only benchmark questions
- wiggum-v2.sh: Ralph Wiggum loop targeting confluence baseline (77.8%)
- docs/human-ux-spec.md: BMad UX designer spec for human doc structure
- Eval results: V2 at 28.7% vs confluence 77.8% baseline
- Hub/spoke ownership now correctly extracted (95% on that question)
- Naming conventions, regions, CIDRs surfaced in system-architecture.md
2026-03-10 14:20:35 +00:00

25 KiB

Terraform: runtime/cloud-iam/aws/reltio-organization/839943396013

Requirements

Name Version
terraform >=1.3.0
aws 4.9.0

Providers

Name Version
aws 4.9.0

Modules

No modules.

Resources

Name Type
aws_iam_access_key.tenant_management resource
aws_iam_policy.AWSServiceManagementConnectorViewBudget-policy resource
aws_iam_policy.GatewayServiceAccount-policy resource
aws_iam_policy.Supportability-Service-APS-Policy resource
aws_iam_policy.allow_assume_read_all_cloudwatch resource
aws_iam_policy.aps-ro-prometheus resource
aws_iam_policy.assume_crossaccountsharing resource
aws_iam_policy.assume_test_read_all_cloudwatch resource
aws_iam_policy.dataplane_poweruser resource
aws_iam_policy.dataplane_readonly resource
aws_iam_policy.reltio_amp_production_query resource
aws_iam_policy.reltio_assume_read_all_cloudwatch resource
aws_iam_policy.team_eng_cloudinterfaces_dynamodb_policy resource
aws_iam_policy.test_cloudwatch_ro resource
aws_iam_role.KarpenterNodeRole-observability-k8s resource
aws_iam_role.Powlos-SecurityAudit-Role resource
aws_iam_role.ReltioOpenTelemetryMetricCollectorGateway resource
aws_iam_role.VPCFlowLogsCloudWatch resource
aws_iam_role.Zilla-Delete-Role-StackSet resource
aws_iam_role.assume_read_all_cloudwatch resource
aws_iam_role.britive_integration_role resource
aws_iam_role.cloudwatch_crossaccountsharingrole resource
aws_iam_role.csp_api_ec2_route53_role resource
aws_iam_role.eks-observability-k8s resource
aws_iam_role.eks-observability-k8s-auto-nodes resource
aws_iam_role.eks-observability-k8s-nodes resource
aws_iam_role.eksNodeObservabilityK8S resource
aws_iam_role.grafana-tempo-tempo-prod-lambda resource
aws_iam_role.grafana-tempo-tempo-qa-lambda resource
aws_iam_role.k8s-oidc-observability-k8s-cdc5140fe0 resource
aws_iam_role.k8s-oidc-observability-k8s-external-dns-external-dns resource
aws_iam_role.k8s-oidc-observability-k8s-kube-system-aws-node resource
aws_iam_role.k8s-oidc-observability-k8s-kube-system-ebs-csi-controller-sa resource
aws_iam_role.k8s-oidc-observability-k8s-kube-system-karpenter resource
aws_iam_role.k8s-oidc-observability-k8s-otel-collector-otel-gw resource
aws_iam_role.k8s-oidc-observability-k8s-tempo-prod-tempo-prod resource
aws_iam_role.k8s-oidc-observability-k8s-tempo-qa-tempo-qa resource
aws_iam_role.lambda-amp-to-pd-2-role-wa317br8 resource
aws_iam_role.lamda-amp-to-pagerduty-role-2ozald8y resource
aws_iam_role.prisma_remediation_role resource
aws_iam_role.reltio-tenant-management-ui-production resource
aws_iam_role.role-ReltioOpenTelemetryMetricCollectorGatewayServiceAccount resource
aws_iam_role.role-SMEndUser resource
aws_iam_role.role-SMSyncUser resource
aws_iam_role.role-SVC-GBQ resource
aws_iam_role.role-reltio-svc-tenant-management resource
aws_iam_role.role-supportability-service resource
aws_iam_role.role-svc-prometheus resource
aws_iam_role.services_monitoring_lambda_exec_role resource
aws_iam_role.synthetics_lambda_exec_role resource
aws_iam_role.team_dataplane_admin resource
aws_iam_role.team_dataplane_poweruser resource
aws_iam_role.team_dataplane_readonly resource
aws_iam_role.team_devops resource
aws_iam_role.team_devops_contractors resource
aws_iam_role.team_eng_cloudinterfaces resource
aws_iam_role.team_eng_cloudops resource
aws_iam_role.team_eng_continuousintegration resource
aws_iam_role.team_eng_dataunification resource
aws_iam_role.team_eng_performance resource
aws_iam_role.team_eng_rdmlcacleancse resource
aws_iam_role.team_infosec resource
aws_iam_role.terraform-role resource
aws_iam_role.test_read_all_cloudwatch resource
aws_iam_role_policy.Powlos-SecurityAudit-Role_UserAccessManagementPolicy resource
aws_iam_role_policy.VPCFlowLogsCloudWatch_CloudwatchLogs resource
aws_iam_role_policy.Zilla-Delete-Role-StackSet_RoleManagementPolicy resource
aws_iam_role_policy.csp_api_ec2_route53_role_csp-api-ec2-route53-policy resource
aws_iam_role_policy.csp_api_policy resource
aws_iam_role_policy.prisma_crossaccount_remediation_policy resource
aws_iam_role_policy.services_monitoring_lambda_exec_role_lambda_exec_policy resource
aws_iam_role_policy.synthetics_lambda_exec_role_lambda_exec_policy resource
aws_iam_role_policy_attachment.KarpenterNodeRole-observability-k8s_AmazonEC2ContainerRegistryReadOnly resource
aws_iam_role_policy_attachment.KarpenterNodeRole-observability-k8s_AmazonEKSWorkerNodePolicy resource
aws_iam_role_policy_attachment.KarpenterNodeRole-observability-k8s_AmazonEKS_CNI_Policy resource
aws_iam_role_policy_attachment.KarpenterNodeRole-observability-k8s_AmazonSSMManagedInstanceCore resource
aws_iam_role_policy_attachment.Powlos-SecurityAudit-Role_SecurityAudit resource
aws_iam_role_policy_attachment.ReltioOpenTelemetryMetricCollectorGateway_ReltioPrometheusRemoteWriteAccessAMPProduction resource
aws_iam_role_policy_attachment.dataplane_poweruser resource
aws_iam_role_policy_attachment.eks-observability-k8s-auto-nodes_AmazonEC2ContainerRegistryPullOnly resource
aws_iam_role_policy_attachment.eks-observability-k8s-auto-nodes_AmazonEKSWorkerNodeMinimalPolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s-nodes_AmazonEC2ContainerRegistryReadOnly resource
aws_iam_role_policy_attachment.eks-observability-k8s-nodes_AmazonEKSWorkerNodePolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s-nodes_AmazonSSMManagedInstanceCore resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSBlockStoragePolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSClusterPolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSComputePolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSLoadBalancingPolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSNetworkingPolicy resource
aws_iam_role_policy_attachment.eks-observability-k8s_AmazonEKSVPCResourceController resource
aws_iam_role_policy_attachment.eksNodeObservabilityK8S_AmazonEC2ContainerRegistryReadOnly resource
aws_iam_role_policy_attachment.eksNodeObservabilityK8S_AmazonEKSWorkerNodePolicy resource
aws_iam_role_policy_attachment.grafana-tempo-tempo-prod-lambda_AWSLambdaBasicExecutionRole resource
aws_iam_role_policy_attachment.grafana-tempo-tempo-prod-lambda_grafana-tempo-tempo-prod resource
aws_iam_role_policy_attachment.grafana-tempo-tempo-qa-lambda_AWSLambdaBasicExecutionRole resource
aws_iam_role_policy_attachment.grafana-tempo-tempo-qa-lambda_grafana-tempo-tempo-qa resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-cdc5140fe0_AWSLoadBalancerControllerIAMPolicy resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-external-dns-external-dns_k8s-external-dns resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-kube-system-aws-node_AmazonEKS_CNI_Policy resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-kube-system-ebs-csi-controller-sa_AmazonEBSCSIDriverPolicy resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-kube-system-karpenter_KarpenterControllerPolicy-observability-k8s resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-otel-collector-otel-gw_observability-k8s-amp-assume-ingest-role resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-tempo-prod-tempo-prod_grafana-tempo-tempo-prod resource
aws_iam_role_policy_attachment.k8s-oidc-observability-k8s-tempo-qa-tempo-qa_grafana-tempo-tempo-qa resource
aws_iam_role_policy_attachment.lambda-amp-to-pd-2-role-wa317br8_AWSLambdaBasicExecutionRole-f1c9e90d-0fbf-4598-8293-53c58c2a71c9 resource
aws_iam_role_policy_attachment.lamda-amp-to-pagerduty-role-2ozald8y_AWSLambdaBasicExecutionRole-7dda427e-f577-4d57-b87b-f02025a1b913 resource
aws_iam_role_policy_attachment.reltio-tenant-management-ui-production_reltio-amp-production-query resource
aws_iam_role_policy_attachment.services_monitoring_lambda_exec_role_AWSLambdaVPCAccessExecutionRole resource
aws_iam_role_policy_attachment.synthetics_lambda_exec_role_AWSLambdaVPCAccessExecutionRole resource
aws_iam_role_policy_attachment.team_eng_performance_aps_ro_prometheus resource
aws_iam_role_policy_attachment.terraform-role_AdministratorAccess resource
aws_iam_saml_provider.britive resource
aws_iam_user.ReltioOpenTelemetryMetricCollectorGatewayServiceAccount resource
aws_iam_user.SMEndUser resource
aws_iam_user.SMSyncUser resource
aws_iam_user.SVC_GBQ resource
aws_iam_user.observabilityportal resource
aws_iam_user.supportability_service resource
aws_iam_user.svc_prometheus resource
aws_iam_user.tenant_management resource
aws_iam_user_policy.ReltioOpenTelemetryMetricCollectorGatewayServiceAccount_assume-reltio-open-telemetry-metric-collector-gateway resource
aws_iam_user_policy.SMSyncUser_AWSServiceManagementConnectorViewBudget resource
aws_iam_user_policy.observabilityportal_APS_policy resource
aws_iam_user_policy.supportability_service_aps_policy resource
aws_iam_user_policy_attachment.SMEndUser_AWSServiceCatalogEndUserFullAccess resource
aws_iam_user_policy_attachment.SMEndUser_AmazonEC2ReadOnlyAccess resource
aws_iam_user_policy_attachment.SMEndUser_AmazonS3ReadOnlyAccess resource
aws_iam_user_policy_attachment.SMSyncUser_AWSIncidentBaselinePolicy resource
aws_iam_user_policy_attachment.SMSyncUser_AWSSecurityHubPolicy resource
aws_iam_user_policy_attachment.SMSyncUser_AWSServiceCatalogAdminReadOnlyAccess resource
aws_iam_user_policy_attachment.SMSyncUser_AWSSupportAccess resource
aws_iam_user_policy_attachment.SMSyncUser_AmazonSSMReadOnlyAccess resource
aws_iam_user_policy_attachment.SMSyncUser_ConfigHealthSQSBaseline resource
aws_iam_user_policy_attachment.SMSyncUser_OpsCenterExecutionPolicy resource
aws_iam_user_policy_attachment.SVC_GBQ_CloudWatchReadOnlyAccess resource
aws_iam_user_policy_attachment.svc_prometheus_ReadOnlyAccess resource
aws_iam_user_policy_attachment.tenant_management resource
aws_caller_identity.current data source
aws_iam_policy.admin data source
aws_iam_policy.iam_ro data source
aws_iam_policy.org_ro data source
aws_iam_policy.support data source
aws_iam_policy.view_only data source
aws_iam_policy_document.britive_assume_role_policy data source
aws_iam_policy_document.test_read_all_cloudwatch_assume_role data source

Inputs

No inputs.

Outputs

Name Description
tenant_management_credentials n/a