This module creates following resources.
aws_cloudwatch_log_policy
| Name | Version |
|---|---|
| terraform | >= 1.5 |
| aws | >= 4.22 |
| Name | Version |
|---|---|
| aws | 5.31.0 |
No modules.
| Name | Type |
|---|---|
| aws_cloudwatch_log_resource_policy.this | resource |
| aws_caller_identity.this | data source |
| aws_iam_policy_document.this | data source |
| aws_region.this | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| name | (Required) The name of the CloudWatch Logs resource policy. | string |
n/a | yes |
| service | (Required) Specify the identity of the AWS service principal to allow delivering logs to this account. Valid values are delivery.logs.amazonaws.com, es.amazonaws.com, events.amazonaws.com, route53.amazonaws.com. |
string |
n/a | yes |
| statements | (Required) A list of statements for CloudWatch Logs resource policy. Each item of statements as defined below.(Required) log_groups - A list of Log group patterns that the resource policy applies to. Whildcard is supported. Configure * to allow all log groups.(Optional) account_whiteilst - A whitelist of AWS Account IDs making the call to CloudWatch Logs.(Optional) resource_whiteilst - A whitelist of the ARN of AWS resources making the call to CloudWatch Logs. |
list(map(set(string))) |
[] |
no |
| Name | Description |
|---|---|
| name | The name of CloudWatch Logs resource policy. |
| service | The identity of the AWS service principal which is allowed to delivery logs to this account. |
| statements | The list of statements for CloudWatch Logs resource policy. |