» Resource: aws_ssm_resource_data_sync
Provides a SSM resource data sync.
» Example Usage
resource "aws_s3_bucket" "hoge" {
bucket = "tf-test-bucket-1234"
region = "us-east-1"
}
resource "aws_s3_bucket_policy" "hoge" {
bucket = "${aws_s3_bucket.hoge.bucket}"
policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "SSMBucketPermissionsCheck",
"Effect": "Allow",
"Principal": {
"Service": "ssm.amazonaws.com"
},
"Action": "s3:GetBucketAcl",
"Resource": "arn:aws:s3:::tf-test-bucket-1234"
},
{
"Sid": " SSMBucketDelivery",
"Effect": "Allow",
"Principal": {
"Service": "ssm.amazonaws.com"
},
"Action": "s3:PutObject",
"Resource": ["arn:aws:s3:::tf-test-bucket-1234/*"],
"Condition": {
"StringEquals": {
"s3:x-amz-acl": "bucket-owner-full-control"
}
}
}
]
}
EOF
}
resource "aws_ssm_resource_data_sync" "foo" {
name = "foo"
s3_destination = {
bucket_name = "${aws_s3_bucket.hoge.bucket}"
region = "${aws_s3_bucket.hoge.region}"
}
}
» Argument Reference
The following arguments are supported:
-
name- (Required) Name for the configuration. -
s3_destination- (Required) Amazon S3 configuration details for the sync.
» s3_destination
s3_destination supports the following:
-
bucket_name- (Required) Name of S3 bucket where the aggregated data is stored. -
region- (Required) Region with the bucket targeted by the Resource Data Sync. -
kms_key_arn- (Optional) ARN of an encryption key for a destination in Amazon S3. -
prefix- (Optional) Prefix for the bucket. -
sync_format- (Optional) A supported sync format. Only JsonSerDe is currently supported. Defaults to JsonSerDe.
» Import
SSM resource data sync can be imported using the name, e.g.
$ terraform import aws_ssm_resource_data_sync.example example-name