Merge pull request #2 from infraspecdev/refactor/organizational-unit

rajat-tomar · web-flow · commit 0d4a01d5f30b · 2024-06-03T08:20:21.000+05:30
refactor: update variable names and parent org condition
diff --git a/README.md b/README.md
@@ -25,17 +25,20 @@ No modules.
 | Name | Type |
 |------|------|
 | [aws_organizations_organizational_unit.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/organizations_organizational_unit) | resource |
+| [aws_organizations_policy_attachment.policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/organizations_policy_attachment) | resource |
 | [aws_organizations_organization.org](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/organizations_organization) | data source |
 
 ## Inputs
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
-| <a name="input_name"></a> [name](#input\_name) | The name of the organizational unit | `string` | n/a | yes |
+| <a name="input_attached_policies"></a> [attached\_policies](#input\_attached\_policies) | List of policy IDs to attach to the organizational unit. | `list(string)` | `[]` | no |
+| <a name="input_organizational_unit_name"></a> [organizational\_unit\_name](#input\_organizational\_unit\_name) | The name of the organizational unit | `string` | n/a | yes |
+| <a name="input_parent_org_id"></a> [parent\_org\_id](#input\_parent\_org\_id) | The ID of the parent organizational unit. | `string` | `""` | no |
 
 ## Outputs
 
 | Name | Description |
 |------|-------------|
-| <a name="output_id"></a> [id](#output\_id) | The ID of the organizational unit |
+| <a name="output_organizational_unit_id"></a> [organizational\_unit\_id](#output\_organizational\_unit\_id) | The ID of the created organizational unit. |
 <!-- END_TF_DOCS -->
diff --git a/data.tf b/data.tf
diff --git a/main.tf b/main.tf
@@ -1,4 +1,12 @@
+data "aws_organizations_organization" "org" {}
+
 resource "aws_organizations_organizational_unit" "this" {
-  name      = var.name
-  parent_id = data.aws_organizations_organization.org.roots[0].id
+  name      = var.organizational_unit_name
+  parent_id = var.parent_org_id != "" ? var.parent_org_id : data.aws_organizations_organization.org.roots[0].id
+}
+
+resource "aws_organizations_policy_attachment" "policy_attachment" {
+  count     = length(var.attached_policies)
+  policy_id = var.attached_policies[count.index]
+  target_id = aws_organizations_organizational_unit.this.id
 }
diff --git a/outputs.tf b/outputs.tf
@@ -1,4 +1,4 @@
-output "id" {
-  description = "The ID of the organizational unit"
+output "organizational_unit_id" {
+  description = "The ID of the created organizational unit."
   value       = aws_organizations_organizational_unit.this.id
 }
diff --git a/provider.tf b/provider.tf
diff --git a/variables.tf b/variables.tf
@@ -1,4 +1,16 @@
-variable "name" {
+variable "organizational_unit_name" {
   description = "The name of the organizational unit"
   type        = string
 }
+
+variable "parent_org_id" {
+  description = "The ID of the parent organizational unit."
+  type        = string
+  default     = ""
+}
+
+variable "attached_policies" {
+  description = "List of policy IDs to attach to the organizational unit."
+  type        = list(string)
+  default     = []
+}

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-output "id" {`
`2`		`- description = "The ID of the organizational unit"`
	`1`	`+output "organizational_unit_id" {`
	`2`	`+ description = "The ID of the created organizational unit."`
`3`	`3`	`value = aws_organizations_organizational_unit.this.id`
`4`	`4`	`}`