provider/aws: Add support for account password policy

[radeksimko]

This should allow codifying AWS account-wide password policy.

To do:

• Initial implementation
• Documentation
• Acceptance tests

[stack72]

I don't think we need to do this. In the schema declaration, we can do this:

Create: resourceAwsIamAccountPasswordPolicyCreate,
Read:   resourceAwsIamAccountPasswordPolicyRead,
Update: resourceAwsIamAccountPasswordPolicyCreate,
Delete: resourceAwsIamAccountPasswordPolicyDelete,

[stack72]

This one is also ace! If you want, you can merge and I can add acceptance tests as I have some free time today

[radeksimko]

This is now ready for review.

[stack72]

@radeksimko this looks really good. The only small thing I would say is that we should maybe add a note to the docs saying that only 1 password policy is allowed per AWS account. Apart from that it's 👍

make testacc TEST=./builtin/providers/aws TESTARGS='-run=TestAccAWSIAMAccountPasswordPolicy'
==> Checking that code complies with gofmt requirements...
go generate $(go list ./... | grep -v /vendor/)
TF_ACC=1 go test ./builtin/providers/aws -v -run=TestAccAWSIAMAccountPasswordPolicy -timeout 120m
=== RUN   TestAccAWSIAMAccountPasswordPolicy_basic
--- PASS: TestAccAWSIAMAccountPasswordPolicy_basic (11.90s)
PASS
ok      github.com/hashicorp/terraform/builtin/providers/aws    11.918s

[radeksimko]

Agreed about the note, I added the following:

I will wait for green from Travis, then merge.

[stack72]

Spot on :)

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.