chore: removed dgs iam users (#914)

pagopa · Jun 13, 2024 · 4028890 · 4028890
1 parent 66da6a8
commit 4028890
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 30 deletions.
diff --git a/.changeset/hungry-otters-wink.md b/.changeset/hungry-otters-wink.md
@@ -0,0 +1,5 @@
+---
+"infrastructure": minor
+---
+
+Removed DGS developers IAM users
diff --git a/apps/infrastructure/src/modules/core/iam_group.tf b/apps/infrastructure/src/modules/core/iam_group.tf
@@ -2,17 +2,6 @@ resource "aws_iam_group" "developers_read_only" {
   name = "developers_read_only"
 }
 
-# IAM Group Membership - DGS
-resource "aws_iam_group_membership" "dgs" {
-  name = "DGS"
-
-  users = [
-    aws_iam_user.mauro_dandrea.name
-  ]
-
-  group = aws_iam_group.developers_read_only.name
-}
-
 resource "aws_iam_group_policy_attachment" "read_only" {
   group = aws_iam_group.developers_read_only.name
   # The AWS ReadOnly Access Policy

diff --git a/apps/infrastructure/src/modules/core/iam_user.tf b/apps/infrastructure/src/modules/core/iam_user.tf
@@ -1,19 +0,0 @@
-resource "aws_iam_user" "mauro_dandrea" {
-  # This force the deletion of the user and its login profile
-  # because we manually give access to the console
-  force_destroy = true
-
-  name = "[email protected]"
-
-  tags = {
-    Company = "DGS"
-  }
-}
-
-# Allow IAM User to change the password
-# Attach IAM User policy because with IAM Group policy we have the following error
-# Error: deleting IAM User  DeleteConflict: Cannot delete entity, must delete login profile first.
-resource "aws_iam_user_policy_attachment" "change_password" {
-  user       = aws_iam_user.mauro_dandrea.name
-  policy_arn = "arn:aws:iam::aws:policy/IAMUserChangePassword"
-}