Add new example to sho wcreating an IAM policy for s3 buckets

Author: Steven Nemetz

examples/policy/README.md

@@ -0,0 +1 @@
+# Example: Managing multiple S3 buckets and create policy for them

examples/policy/main.tf

@@ -0,0 +1,14 @@
+module "s3" {
+  source       = "../../"
+  names        = ["bucket-1", "bucket2", "bucket_3"]
+  environment  = "${var.environment}"
+  organization = "${var.organization}"
+}
+
+data "aws_iam_policy_document" "s3" {
+  statement {
+    actions   = ["s3:*"]
+    effect    = "Allow"
+    resources = ["${formatlist("%s/*", module.s3.arns)}"]
+  }
+}

examples/policy/outputs.tf

@@ -0,0 +1,34 @@
+output "arns" {
+  description = "List of AWS S3 Bucket ARNs"
+  value       = "${module.s3.arns}"
+}
+
+output "domain_names" {
+  description = "List of AWS S3 Bucket Domain Names"
+  value       = "${module.s3.domain_names}"
+}
+
+output "hosted_zone_ids" {
+  description = "List of AWS S3 Bucket Hosted Zone IDs"
+  value       = "${module.s3.hosted_zone_ids}"
+}
+
+output "ids" {
+  description = "List of AWS S3 Bucket IDs"
+  value       = "${module.s3.ids}"
+}
+
+output "names" {
+  description = "List of AWS S3 Bucket Names"
+  value       = "${module.s3.names}"
+}
+
+output "regions" {
+  description = "List of AWS S3 Bucket Regions"
+  value       = "${module.s3.regions}"
+}
+
+// Unique to this example
+output "policy" {
+  value = "${data.aws_iam_policy_document.s3.json}"
+}

examples/policy/provider.tf

@@ -0,0 +1,3 @@
+provider "aws" {
+  region = "${var.region}"
+}

examples/policy/variables.tf

@@ -0,0 +1,11 @@
+variable "environment" {
+  default = "dev"
+}
+
+variable "organization" {
+  default = "testorg"
+}
+
+variable "region" {
+  default = "us-west-2"
+}