added iam modules

README.md

@@ -0,0 +1,23 @@
+# terraform-aws-iam_instance_profile
+This module creates an `iam_instance_profile` based on provided allowed actions and resources. The module is built for Terraform version 0.12
+
+## Examples
+See also [/examples/default] a complete working example.
+
+
+## Usages
+```
+module "iam_instance_profile" {
+    name = var.name
+    actions = [
+        "s3:*",
+        "rds:*",
+        "logs:*",
+    ]
+}
+
+##
+```
+
+## Outputs:
+The name of the iam_instance_profile: `module.iam_instance_profile.name`

main.tf

@@ -0,0 +1,41 @@
+terraform {
+  required_version = ">= 0.12.0"
+}
+
+resource "aws_iam_role" "iam_role" {
+  name = var.name
+
+  assume_role_policy = <<EOF
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Action": "sts:AssumeRole",
+      "Principal": {
+        "Service": "ec2.amazonaws.com"
+      },
+      "Effect": "Allow"
+    }
+  ]
+}
+EOF
+}
+
+resource "aws_iam_instance_profile" "iam_instance_profile" {
+  name = var.name
+  role = aws_iam_role.iam_role.name
+}
+
+data "aws_iam_policy_document" "iam_policy_document" {
+  statement {
+    effect = "Allow"
+    actions = var.actions
+    resources = var.resources
+  }
+}
+
+resource "aws_iam_role_policy" "iam_role_policy" {
+  name = var.name
+  role = aws_iam_role.iam_role.name
+  policy = data.aws_iam_policy_document.iam_policy_document.json
+}

outputs.tf

@@ -0,0 +1,4 @@
+output "name" {
+  description = "Name of create instance profile"
+  value       = aws_iam_instance_profile.iam_instance_profile.name
+}

variables.tf

@@ -0,0 +1,17 @@
+variable "name" {
+  description = "Name used for created resources."
+  default     = null
+  type        = string
+}
+
+variable "actions" {
+  description = "Actions allowed for this instance profile."
+  default     = ["logs:*"]
+  type        = list(string)
+}
+
+variable "resources" {
+  description = "Resources allowed to access by this instance profile."
+  default     = ["*"]
+  type        = list(string)
+}