added terrafrom configs

000000000000/templates/assume_role.tpl

@@ -0,0 +1,13 @@
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Action": "sts:AssumeRole",
+      "Principal": {
+        "Service": "ec2.amazonaws.com"
+      },
+      "Effect": "Allow",
+      "Sid": ""
+    }
+  ]
+}

000000000000/templates/asume_role_policy.tpl

@@ -0,0 +1,12 @@
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "sts:AssumeRole"
+      ],
+      "Resource": "arn:aws:iam::${prod_account_id}:role/role_c"
+    }
+  ]
+}

000000000000/templates/role_a_policy.tpl

@@ -0,0 +1,17 @@
+{
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Action": "*",
+            "Resource": "*",
+            "Effect": "Allow",
+            "Sid": ""
+        },
+        {
+            "Action": "iam:*",
+            "Resource": "*",
+            "Effect": "Deny",
+            "Sid": ""
+        }
+    ]
+}