This project provides a CDK construct creating AWS organizations.
Project description
AWS Organizations
This project provides a CDK construct creating AWS organizations.
Currently there is no
@aws-cdk/organizations
available. See this AWS CDK Issue.
See API.md
Install
TypeScript
npm install @pepperize/cdk-organizations
or
yarn add @pepperize/cdk-organizations
Python
pip install pepperize.cdk-organizations
C# / .Net
dotnet add package Pepperize.CDK.Organizations
Example
See example.ts
import { App, Stack } from "@aws-cdk/core";
import {
Account,
FeatureSet,
IamUserAccessToBilling,
Organization,
OrganizationalUnit,
Policy,
PolicyAttachment,
PolicyType,
} from "@pepperize/cdk-organizations";
const app = new App();
const stack = new Stack(app);
// Create the organization
const organization = new Organization(stack, "Organization", {
featureSet: FeatureSet.ALL,
});
// Create an Account in the current organization
new Account(stack, "SharedAccount", {
accountName: "SharedAccount",
email: "info+shared-account@pepperize.com",
roleName: "OrganizationAccountAccessRole",
iamUserAccessToBilling: IamUserAccessToBilling.ALLOW,
parent: organization.root,
});
// Create an OU in the current organizations root
const projects = new OrganizationalUnit(stack, "ProjectsOU", {
organizationalUnitName: "Projects",
parent: organization.root,
});
new Account(stack, "Project1Account", {
accountName: "SharedAccount",
email: "info+project1@pepperize.com",
parent: projects,
});
// Create a nested OU and attach two accounts
const project2 = new OrganizationalUnit(stack, "Project2OU", {
organizationalUnitName: "Project2",
parent: projects,
});
new Account(stack, "Project2DevAccount", {
accountName: "Project 2 Dev",
email: "info+project2-dev@pepperize.com",
parent: project2,
});
new Account(stack, "Project2ProdAccount", {
accountName: "Project 2 Prod",
email: "info+project2-prod@pepperize.com",
parent: project2,
});
// Attach a policy to an attachment target
const policy = new Policy(stack, "Policy", {
content: '{\\"Version\\":\\"2012-10-17\\",\\"Statement\\":{\\"Effect\\":\\"Allow\\",\\"Action\\":\\"s3:*\\"}}',
description: "Enables admins of attached accounts to delegate all S3 permissions",
policyName: "AllowAllS3Actions",
policyType: PolicyType.SERVICE_CONTROL_POLICY,
});
new PolicyAttachment(stack, "PolicyAttachment", {
target: organization.root,
policy: policy,
});
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for pepperize.cdk-organizations-0.0.15.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | ef4fd7badcae29558478a783abe2d5f967bff6f7824c84f6514b1f7f1977376a |
|
MD5 | 3966dd6f1f3bf59c7a270715477f1493 |
|
BLAKE2b-256 | ec47e271cd212ecebf45917e529bfde4cebd007a49034e03be34bc8a13a44e01 |
Close
Hashes for pepperize.cdk_organizations-0.0.15-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 996728ae4267f100131d49ed1b9f38cd613fbeeeecb557576a3105d7c3b9fa39 |
|
MD5 | dbbc27dcac1bdd4328791cdafa88dc6c |
|
BLAKE2b-256 | 8c55278cb70494dfa68547f4fd719418db4968630f2df237fb1d2f77d266ea33 |