This is a proof of concept for managing AWS ASG tags, which are handled a little differently than almost literally every other resource type It's fragile, don't add more required tag keys or it'll break as written. Actually, I wouldn't use it at all if I were you
Go to file
2023-08-10 19:58:21 -04:00
asg-tags.sentinel Update asg-tags.sentinel 2023-08-10 19:58:21 -04:00
README.md Add readme again 2023-08-10 16:57:17 -07:00

This is a proof of concept for managing ASG 'tag' property with Sentinel, which for some reason is completely different than every other reasource.

It doesn't handle multiple required keys, but neither did the original: https://github.com/hashicorp/terraform-sentinel-policies/blob/main/aws/check-ec2-environment-tag.sentinel

Mandatory tags should probably be a map that contains a list of acceptable values. rather than a list for the sake of associating things e.g., mandatory_tags = { "Environments: [prod, dev, qa]"}