This repository contains Terraform modules to set up the necessary IAM roles and policies for Lucid AWS imports. These modules include:
- Org Read Delegation Module: Sets up a bastion account (optionally) and delegates read access to the organization
- Bastion Role Module: Sets up an IAM role in the bastion account to assume roles in member accounts for imports.
- Import Role Module: Sets up an IAM role in any AWS account for Lucid to perform imports.
For Org Level Import, all 3 modules are required. For Non-Org Level Import, only Import Role Module is required.
This module sets up a bastion account and delegates read access to the organization, either by creating a new account or using an existing one.
This module creates an IAM role in the bastion account that allows Lucid's AWS import proxy account to assume it and perform imports in member accounts.
This module creates an IAM role that can be assumed by Lucid's proxy AWS import account or the bastion account for performing imports.
| Name | Version |
|---|---|
| terraform | >= 1.4 |
| aws | >= 5.0 |
This project is licensed under the Apache License, Version 2.0. See the LICENSE file for details.
Copyright 2025 Lucid Software Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.