Blog

Common Fate Terraform Provider

Chris Norman
Chris Norman
February 10, 2023
Common Fate Terraform Provider

Don't like reading? Check out a quick demonstration here.

Manage your IAM resources via Terraform? Now you can manage your Common Fate Access Rules via your Terraform workflow too!

Currently, the only way for users of Common Fate to create Access Rules is via the admin panel on the frontend. We chatted with our community and this seemed like a pain point. So we listened, and in RFD #9 we discussed the idea of a Common Fate Terraform Provider.

Fast forward a few weeks, and we have a freshly baked Terraform Provider!

So what does this all actually mean?

  • Quickly and programmatically manage the life cycle of Access Rules with Terraform.
  • Closely couple the creation of Access Rules with other cloud resources, like AWS IAM Identity Centre resources.

Here’s an example:

resource "commonfate_access_rule" "s3-example" {
  name ="s3ListBuckets"
  description="Allows users to view buckets in AWS"
  groups=["common_fate_administrators"]
  target=[
    {
      field="accountId"
      value=["123456789012"]
    },
    {
      field="permissionSetArn"
      value=[aws_ssoadmin_permission_set.example.arn]
    }
  ]
  target_provider_id="aws-sso-v2"
  duration="3600"
}

Great! Now how do you get started? If you already have a Common Fate deployment visit the docs. Don’t have a Common Fate deployment yet? Get started in 5 minutes here!

Let us know how you go, we’d love to hear from you!

Share this post
Chris Norman
Co-Founder