svenlito/iam_users_group_with_role.hcl

## iam_users_group_with_role.hcl
module "test_group" {
  source  = "terraform-aws-modules/iam/aws//modules/iam-group-with-policies"
  version = "3.7.0"

  name                              = "Test"
  aws_account_id                    = local.master_account_id
  attach_iam_self_management_policy = true

  group_users = ["sven", "phisinee.s"]

  custom_group_policy_arns = [
    aws_iam_policy.test_group.arn,
  ]

  providers = {
    aws = aws.master
  }
}

resource "aws_iam_policy" "test_group" {
  name   = "test_group_policy"
  policy = data.aws_iam_policy_document.test_group.json
}

data "aws_iam_policy_document" "test_group" {
  statement {
    effect  = "Allow"
    actions = ["sts:AssumeRole"]

    resources = [
      "arn:aws:iam::${local.master_account_id}:role/test_group",
    ]
  }
}
	module "test_group" {
	source = "terraform-aws-modules/iam/aws//modules/iam-group-with-policies"
	version = "3.7.0"

	name = "Test"
	aws_account_id = local.master_account_id
	attach_iam_self_management_policy = true

	group_users = ["sven", "phisinee.s"]

	custom_group_policy_arns = [
	aws_iam_policy.test_group.arn,
	]

	providers = {
	aws = aws.master
	}
	}

	resource "aws_iam_policy" "test_group" {
	name = "test_group_policy"
	policy = data.aws_iam_policy_document.test_group.json
	}

	data "aws_iam_policy_document" "test_group" {
	statement {
	effect = "Allow"
	actions = ["sts:AssumeRole"]

	resources = [
	"arn:aws:iam::${local.master_account_id}:role/test_group",
	]
	}
	}