You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
ravi.periketi 0948ec28df Merge pull request 'update/provider' (#4) from update/provider into master 7 months ago
examples fix pre-commit 7 months ago
.gitignore initial commit 9 months ago
.pre-commit-config.yaml update provider version 7 months ago
CHANGELOG.md Update the CHANGELOG.md 7 months ago
Jenkinsfile add jenkinsfile 9 months ago
LICENSE initial commit 9 months ago
README.md fix pre-commit 7 months ago
main.tf refactor 8 months ago
outputs.tf test by enable the not scope function 9 months ago
variables.tf refactor 8 months ago
versions.tf update provider version 7 months ago

README.md

terraform-module-azurerm-policy

Usage

See examples folders for usage of this module.

Requirements

Name Version
terraform >= 0.12
azurerm >= 2.0.0

Providers

Name Version
azurerm >= 2.0.0

Inputs

Name Description Type Default Required
custom_policies One or more custom policies.
list(object({
metadata = string
policy_rule = string
parameters = string
}))
[
null
]
no
custom_policy_definition_enabled Boolean flag which describes whether or not to enable Policy definition. bool false no
custom_policy_descriptions List of descriptions which define the Policy definitions. list(string)
[
““
]
no
custom_policy_display_names List of Policy definition display names. list(string)
[
““
]
no
custom_policy_management_group_ids List of IDs of the management groups where this policy should be defined. Changing this forces a new resource to be created. list(string)
[
““
]
no
custom_policy_modes List of Policy modes that allows us to specify which resource types will be evaluated. The value can be All, Indexed or NotSpecified. Changing this resource forces a new resource to be created. list(string)
[
““
]
no
custom_policy_names List of Policy definition names. Changing this force a new resourec to be created. list(string)
[
““
]
no
custom_policy_types List of Policy types. The value can be BuiltIn, Custom or NotSpecified. Changing this forces a new resource to be created. list(string)
[
““
]
no
enabled Enable or disable modul bool true no
existing_policy_definition_ids List of IDs of the Policy Definition to be applied at the specified Scope list(string)
[
““
]
no
identity_type One or more identity blocks. Possible values for the policy assignment types are SystemAssigned (where Azure will generate a service principal for you), or None (no use of a managed service identity). string "SystemAssigned" no
policy_assignment_descriptions List of descriptions to use for the Policy assignments. Changing this force a new resource to be created. list(string)
[
““
]
no
policy_assignment_display_names List of display names to use for this Policy Assignment. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_assignment_enabled Boolean flag which describes whether or not to enable the Policy assignment. bool false no
policy_assignment_identity_enabled Boolean lag which describes whether to enable the identity block or not. list(bool)
[
false
]
no
policy_assignment_locations List of Azure locations where this policy assignment should exist. This is required when an Identity is assigned. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_assignment_names A list of Policy assignment names.Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_assignment_not_scopes A list of the Policy assignment's excluded scopes. The list must contain resource IDs (such as subscriptions e.g. /subscriptions/00000000-0000-0000-000000000000 or resource groups e.g. /subscriptions/00000000-0000-0000-000000000000/resourceGroups/myResourceGroup). list(list(string))
[
[]
]
no
policy_assignment_parameters This is a JSON object that maps to the Parameters field from the Policy Definition. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_assignment_parameters_enabled List of boolean flags which describes the policy assignments has parameters or not. list(bool)
[
false
]
no
policy_assignments List scopes and parameters at which the Policy Assignment should be applied, which must be a Resource ID (such as Subscription e.g. /subscriptions/00000000-0000-0000-000000000000 or a Resource Group e.g. /subscriptions/00000000-0000-0000-000000000000/resourceGroups/myResourceGroup). Changing this forces a new resource to be created. list(object({ scope = string, parameters = string }))
[
null
]
no
policy_initiative_descriptions A list which provides the decriptions for the policy initiatives. list(string)
[
““
]
no
policy_initiative_display_names List of display names of the policy initiatives. list(string)
[
““
]
no
policy_initiative_enabled Boolean Flag which decribe whether or not enable the policy set definition. bool false no
policy_initiative_management_group_ids List of IDs of the management group where this policy should be defined. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_initiative_names List of name of the policy initiatives. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_initiative_types List of policy set types. Possible values are BuiltIn or Custom. Changing this forces a new resource to be created. list(string)
[
““
]
no
policy_initiatives One or more policy initiatives.
list(object({
policy_definitons = string
metadata = string
parameters = string
}))
null no

Outputs

Name Description
identities n/a
policy_assignment_ids The IDs of the Policy assignments.
policy_definition_ids The IDs of the Policy definition.
policy_set_definition_ids The IDs of the Policy set definitions.