onepamcom/terraform-provider-onepam
GitHub: onepamcom/terraform-provider-onepam
这是一个用于通过基础设施即代码方式管理 OnePAM 平台中资源、团队、策略及网关的 Terraform 插件。
Stars: 0 | Forks: 0
# OnePAM Terraform Provider
[](https://registry.terraform.io/providers/onepamcom/onepam)
[](https://opensource.org/licenses/MPL-2.0)
用于管理 [OnePAM](https://onepam.com) 资源、团队、策略和网关的 Terraform provider。
## Requirements
- Terraform >= 1.0
## 安装
```
terraform {
required_providers {
onepam = {
source = "onepamcom/onepam"
version = "~> 0.1"
}
}
}
```
## Authentication
```
provider "onepam" {
host = "https://onepam.example.com"
api_key = var.onepam_api_key # or set ONEPAM_API_KEY env var
}
```
## 快速开始
```
resource "onepam_group" "production" {
name = "Production Servers"
description = "All production infrastructure"
}
resource "onepam_resource" "web_server" {
name = "web-prod-01"
type = "ssh"
target_host = "10.0.1.50"
target_port = 22
group_id = onepam_group.production.id
}
resource "onepam_team" "sre" {
name = "SRE Team"
description = "Site Reliability Engineers"
}
resource "onepam_policy" "sre_prod_access" {
name = "SRE Production Access"
effect = "allow"
teams = [onepam_team.sre.id]
groups = [onepam_group.production.id]
actions = ["ssh:connect", "ssh:sudo"]
}
```
## Resources
| Resource | Description |
|----------|-------------|
| `onepam_resource` | SSH 服务器、数据库、RDP 主机、Web 应用 |
| `onepam_group` | 资源组 |
| `onepam_team` | 用户团队 |
| `onepam_user` | 用户账户 |
| `onepam_policy` | 访问策略 |
| `onepam_gateway` | 网关注册 |
## Data Sources
| Data Source | Description |
|-------------|-------------|
| `onepam_resource` | 查找现有资源 |
| `onepam_group` | 查找现有组 |
## 文档
- [Provider Docs](docs/index.md)
- [OnePAM Docs](https://onepam.com/docs)
- [Terraform Deployment Modules](https://github.com/onepamcom/onepam-terraform)
标签:EC2, ECS, IaC, JSONLines, OnePAM, osquery, PAM, RDP, SRE, SSH, Streamlit, Terraform, Terraform Provider, 偏差过滤, 多云管理, 安全策略, 提示词设计, 权限管理, 模型越狱, 特权访问管理, 网关, 自动化运维, 访问控制, 资源编排, 运维安全, 零信任