A script to import AWS Resources defined by speee/terraform-aws-sso-assignment automatically.
git clone https://github.com/speee/terraform-aws-sso-assignment-importer.git
cd ./terraform-aws-sso-assignment-importer
npm ci
npm build
npm i -g .To execute import-all command, set all as ${ASSIGNMENT_NAME}.
main.tf(Replace the${ASSIGNMENT_NAME})
module "${ASSIGNMENT_NAME}_assignments" {
source = "[email protected]:speee/terraform-aws-sso-assignment.git"
instance_arn = local.instance_arn
identity_store_id = local.identity_store_id
organization_accounts = local.accounts
assignments = var.assignments_${ASSIGNMENT_NAME}
}
variables.tf(Replace the${ASSIGNMENT_NAME})
variable "assignments_${ASSIGNMENT_NAME}" {
type = map(map(map(list(string))))
}
- To import account assignments of all accounts in AWS Organizations.
sso-importer import-all
Import All AWS SSO assignments
Options:
--version Show version number [boolean]
--sso-region Region of AWS SSO instance [string] [required]
--generate-only Not to run import command but generate Terraform file.
[boolean] [default: false]
--help Show help [boolean]
- To import account assignments of specified accounts.
sso-importer import
Import AWS SSO assignments
Options:
--version Show version number [boolean]
--sso-region Region of AWS SSO instance [string] [required]
--generate-only Not to run import command but generate Terraform file.
[boolean] [default: false]
--help Show help [boolean]
-n, --assignment-name Name of assignments. (e.g. OU name) [string] [required]
--accounts IDs of AWS accounts to be imported. [array] [required]
See example/all and example/custom.