Name		Name	Last commit message	Last commit date
parent directory ..
.header.md		.header.md
.terraform-docs.yaml		.terraform-docs.yaml
README.md		README.md
datasync-examples-cross-account.png		datasync-examples-cross-account.png
main.tf		main.tf
outputs.tf		outputs.tf
providers.tf		providers.tf
s3.tf		s3.tf
terraform.auto.tfvars.example		terraform.auto.tfvars.example
variables.tf		variables.tf

README.md

S3 to S3 Cross account

This example demonstrates how to create a S3 to S3 replication scenario across AWS Accounts using the AWS DataSync module.

Requirements

Name	Version
terraform	>= 0.14.0
aws	>= 3.72.0
awscc	>= 0.11.0

Providers

Name	Version
aws	>= 3.72.0
aws.destination-account	>= 3.72.0
random	n/a

Modules

Name	Source	Version
backup_tasks	../../modules/datasync-task	n/a
dest_log_delivery_bucket	terraform-aws-modules/s3-bucket/aws	>=3.5.0
destination_bucket	terraform-aws-modules/s3-bucket/aws	>=3.5.0
s3_dest_location	../../modules/datasync-locations	n/a
s3_source_location	../../modules/datasync-locations	n/a
source_bucket	terraform-aws-modules/s3-bucket/aws	>=3.5.0
source_log_delivery_bucket	terraform-aws-modules/s3-bucket/aws	>=3.5.0

Resources

Name	Type
aws_iam_role.datasync_dest_s3_access_role	resource
aws_kms_key.dest-kms	resource
aws_kms_key.source-kms	resource
aws_kms_key_policy.dest-kms-key-policy	resource
aws_kms_key_policy.source-kms-key-policy	resource
aws_s3_bucket_policy.allow_access_from_another_account	resource
aws_s3_bucket_server_side_encryption_configuration.dest-bucket	resource
aws_s3_bucket_server_side_encryption_configuration.dest-log-bucket	resource
aws_s3_bucket_server_side_encryption_configuration.source-bucket	resource
aws_s3_bucket_server_side_encryption_configuration.source-log-bucket	resource
random_pet.prefix	resource
aws_caller_identity.cross-account	data source
aws_caller_identity.current	data source

Inputs

Name	Description	Type	Default	Required
dest_account_profile	The AWS Profile for Source Account where resources needed for the source DataSync location configuration are created	`string`	`"destination-account"`	no
region	The name of the region you wish to deploy into	`string`	`"us-east-1"`	no
source_account_profile	The AWS Profile for Destination Account where all the DataSync resources will be created i.e., DataSync locations, Tasks and Executions	`string`	`"source-account"`	no

Outputs

Name	Description
datasync_dest_role_arn	DataSync Source S3 Access IAM role ARN
datasync_src_role_arn	DataSync Destination S3 Access IAM role ARN
datasync_task_arn	Datasync Task ARN
my_s3_dest_locations	DataSync S3 Destination Location ARN
my_s3_source_locations	DataSync S3 Source Location ARN