Merge pull request #23 from infraspecdev/fix/account-id-assignment-example

fix: Update the example to use the account ID assignment as per module

Author: Mufaddal5253110

examples/assign-users-and-groups-to-account/README.md

@@ -36,7 +36,7 @@ No resources.
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
-| <a name="input_account_assignments"></a> [account\_assignments](#input\_account\_assignments) | A list of objects representing permission assignments for AWS SSO. Each object contains the following attributes:<br>  - account\_id: The AWS account ID where the permissions will be applied.<br>  - permission\_sets: List of permission-set to be assigned to the specified principals.<br>  - principal\_names: An identifier for an object in AWS SSO, such as the names of groups or users .<br>   -principal\_type: The entity type for which the assignment will be created. Valid values: USER, GROUP. | <pre>list(object({<br>    account_id      = string<br>    permission_sets = list(string)<br>    principal_names = list(string)<br>    principal_type  = string<br>  }))</pre> | <pre>[<br>  {<br>    "account_id": "121212121212",<br>    "permission_sets": [<br>      "StagingDev"<br>    ],<br>    "principal_names": [<br>      "Staging_Dev"<br>    ],<br>    "principal_type": "GROUP"<br>  }<br>]</pre> | no |
+| <a name="input_account_assignments"></a> [account\_assignments](#input\_account\_assignments) | A list of objects representing permission assignments for AWS SSO. Each object contains the following attributes:<br>  - account\_name: The AWS account where the permissions will be applied.<br>  - permission\_sets: List of permission-set to be assigned to the specified principals.<br>  - principal\_names: An identifier for an object in AWS SSO, such as the names of groups or users .<br>   -principal\_type: The entity type for which the assignment will be created. Valid values: USER, GROUP. | <pre>list(object({<br>    account_name    = string<br>    permission_sets = list(string)<br>    principal_names = list(string)<br>    principal_type  = string<br>  }))</pre> | <pre>[<br>  {<br>    "account_name": "staging",<br>    "permission_sets": [<br>      "StagingDev"<br>    ],<br>    "principal_names": [<br>      "Staging_Dev"<br>    ],<br>    "principal_type": "GROUP"<br>  }<br>]</pre> | no |
 
 ## Outputs
 

examples/assign-users-and-groups-to-account/variables.tf

@@ -1,20 +1,20 @@
 variable "account_assignments" {
   description = <<EOF
   A list of objects representing permission assignments for AWS SSO. Each object contains the following attributes:
-  - account_id: The AWS account ID where the permissions will be applied.
+  - account_name: The AWS account where the permissions will be applied.
   - permission_sets: List of permission-set to be assigned to the specified principals.
   - principal_names: An identifier for an object in AWS SSO, such as the names of groups or users .
    -principal_type: The entity type for which the assignment will be created. Valid values: USER, GROUP.
     EOF
   type = list(object({
-    account_id      = string
+    account_name    = string
     permission_sets = list(string)
     principal_names = list(string)
     principal_type  = string
   }))
   default = [
     {
-      account_id      = "121212121212"
+      account_name    = "staging"
       permission_sets = ["StagingDev"]
       principal_names = ["Staging_Dev"]
       principal_type  = "GROUP"

modules/account_users_and_groups_assignments/locals.tf

@@ -10,7 +10,7 @@ locals {
     for acc_assignment in var.account_assignments : [
       for ps_name in acc_assignment.permission_sets : [
         for pr_name in acc_assignment.principal_names : {
-          acc_id         = account_map[acc_assignment.account_name]
+          acc_id         = local.account_map[acc_assignment.account_name]
           principal_name = pr_name
           ps_name        = ps_name
           principal_type = acc_assignment.principal_type