CCL-1026 added tag policy

modules/aws/tag_policy/README.md

@@ -0,0 +1,23 @@
+# AWS Organizations Tag Policy
+
+This Terraform module creates and attaches an AWS Organizations TAG Policy. The policy allows you to specify which resources to be tagged of for your AWS Organization or specific AWS accounts.
+
+## Resources
+
+- `aws_organizations_policy`: Creates the tag policy.
+- `aws_organizations_policy_attachment`: Attaches the tag policy to specified AWS Organization Units (OUs) or AWS accounts.
+
+## Variables
+
+### `policy_name`
+
+- **Description**: The name of the Tag policy.
+- **Type**: `string`
+- **Default**: `"TagPolicy"`
+
+### `policy_description`
+
+- **Description**: The description of the Tag policy.
+- **Type**: `string`
+- **Default**: `"This Tag Policy will apply tags to resources"`
+

modules/aws/tag_policy/enforce_mandatory_tag_values.template

@@ -0,0 +1,9 @@
+{
+  "tags": {
+    "CostCentre": {
+      "tag_key": {
+        "@@assign": "CostCentre"
+      }
+    }
+  }
+}

modules/aws/tag_policy/main.tf

@@ -0,0 +1,15 @@
+resource "aws_organizations_policy" "mandatory_tag_policy" {
+  name        = var.policy_name
+  description = var.policy_description
+  type        = "TAG_POLICY"
+  content = file(
+    "./enforce_mandatory_tag_values.template",
+  )
+}
+
+
+resource "aws_organizations_policy_attachment" "mandatory_tags" {
+  policy_id = aws_organizations_policy.mandatory_tag_policy.id
+  target_id = aws_organizations_organization.mandatory_tag_policy.roots[0].id
+}
+

modules/aws/tag_policy/variables.tf

@@ -0,0 +1,13 @@
+variable "policy_name" {
+  description = "The name of the tag policy"
+  type        = string
+  default     = "TagPolicy"
+}
+
+variable "policy_description" {
+  description = "The description of the tag policy"
+  type        = string
+  default     = "Policy to add tags to resources"
+}
+
+