aws-cdk-finops-costreview-access is an AWS CDK construct library to provision IAM resources for FinOps cloud cost reviews.
- Create IAM user or IAM role with optional external account trust
- Attach AWS managed policies for Billing, CloudWatch, Organizations
- Supports naming overrides
- Works with CDK v2 (
aws-cdk-lib) - CI/CD ready
npm install aws-cdk-lib constructsimport { App } from 'aws-cdk-lib';
import { FinOpsStack } from '../lib/finops-stack';
const app = new App();
new FinOpsStack(app, 'FinOpsStack');import { Stack, StackProps } from 'aws-cdk-lib';
import { Construct } from 'constructs';
import { FinOpsAccess } from './finops-access';
export class FinOpsStack extends Stack {
constructor(scope: Construct, id: string, props?: StackProps) {
super(scope, id, props);
new FinOpsAccess(this, 'FinOpsAccess', {
mode: 'iam-user',
userName: 'finops-review-user',
roleName: 'finops-review-role',
attachOrganizationsPolicy: true,
serviceProviderAccountId: '123456789012',
});
}
}npm install
npm run build
npx cdk synth
npm test- Node.js setup (.nvmrc)
- Dependency install
- Build
- CDK synth
- Jest tests
.
├── bin/app.ts
├── lib/finops-stack.ts
├── .github/workflows/cdk.yml
├── package.json
├── tsconfig.json
├── jest.config.js
├── .nvmrc
├── .gitignore
├── cdk.json
- Fork the repo
- Create a feature branch
- Commit changes
- Push & create PR
MIT — see LICENSE