From 1879fc4d4fe119f5f2ed65117e27fa431179a20d Mon Sep 17 00:00:00 2001
From: caswalker <90857961+caswalker@users.noreply.github.com>
Date: Mon, 14 Feb 2022 14:05:50 -0500
Subject: [PATCH] Create iam.tf

---
 iam.tf | 55 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 55 insertions(+)
 create mode 100644 iam.tf

diff --git a/iam.tf b/iam.tf
new file mode 100644
index 0000000..03d9360
--- /dev/null
+++ b/iam.tf
@@ -0,0 +1,55 @@
+resource "aws_iam_user" "user" {
+  name          = "${local.resource_prefix.value}-user"
+  force_destroy = true
+
+  tags = merge({
+    Name        = "${local.resource_prefix.value}-user"
+    Environment = local.resource_prefix.value
+    }, {
+    git_commit           = "d68d2897add9bc2203a5ed0632a5cdd8ff8cefb0"
+    git_file             = "terraform/aws/iam.tf"
+    git_last_modified_at = "2020-06-16 14:46:24"
+    git_last_modified_by = "nimrodkor@gmail.com"
+    git_modifiers        = "nimrodkor"
+    git_org              = "bridgecrewio"
+    git_repo             = "terragoat"
+    yor_trace            = "9b45b298-c1ea-426a-9644-610780021eaa"
+  })
+
+}
+
+resource "aws_iam_access_key" "user" {
+  user = aws_iam_user.user.name
+}
+
+resource "aws_iam_user_policy" "userpolicy" {
+  name = "excess_policy"
+  user = "${aws_iam_user.user.name}"
+
+  policy = <<EOF
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Action": [
+        "ec2:*",
+        "s3:*",
+        "lambda:*",
+        "cloudwatch:*"
+      ],
+      "Effect": "Allow",
+      "Resource": "*"
+    }
+  ]
+}
+EOF
+}
+
+output "username" {
+  value = aws_iam_user.user.name
+}
+
+output "secret" {
+  value = aws_iam_access_key.user.encrypted_secret
+}
+