Add max_password_age for password policy (#5)

76f6ee5d · Quentin Revel · Anton Babenko · 7504a11b · 76f6ee5d · 76f6ee5d
Commit 76f6ee5d authored Mar 01, 2018 by Quentin Revel Committed by Anton Babenko Mar 01, 2018
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

main.tf modules/iam-account/main.tf +1 -0

variables.tf modules/iam-account/variables.tf +5 -0

No files found.
--- a/modules/iam-account/main.tf
+++ b/modules/iam-account/main.tf
@@ -9,6 +9,7 @@ resource "aws_iam_account_alias" "this" {
 resource "aws_iam_account_password_policy" "this" {
  count = "${var.create_account_password_policy ? 1 : 0}"

+  max_password_age               = "${var.max_password_age}"
  minimum_password_length        = "${var.minimum_password_length}"
  allow_users_to_change_password = "${var.allow_users_to_change_password}"
  hard_expiry                    = "${var.hard_expiry}"

--- a/modules/iam-account/variables.tf
+++ b/modules/iam-account/variables.tf
@@ -12,6 +12,11 @@ variable "create_account_password_policy" {
  default     = true
 }

+variable "max_password_age" {
+  description = "The number of days that an user password is valid."
+  default     = 0
+}
+
 variable "minimum_password_length" {
  description = "Minimum length to require for user passwords"
  default     = 8