Skip to content

Commit

Permalink
fix IAM permissions
Browse files Browse the repository at this point in the history
  • Loading branch information
Brian Fitzwater - IDI-C committed Jun 23, 2020
1 parent 5169c22 commit 7cde0ab
Showing 1 changed file with 6 additions and 8 deletions.
14 changes: 6 additions & 8 deletions iam.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,8 @@ data "aws_iam_policy_document" "policy" {
effect = "Allow"
actions = [
"s3:GetBucketLocation",
"s3:ListAllMyBuckets"
"s3:ListBucket"
]
resources = ["arn:aws:s3:::*"]
}
statement {
effect = "Allow"
actions = ["s3:ListBucket"]
resources = [aws_s3_bucket.bucket.arn]
}
statement {
Expand Down Expand Up @@ -63,11 +58,14 @@ data "aws_iam_policy_document" "policy" {
"ec2:DescribeImages",
"ec2:DescribeInstances",
"ec2:RunInstances",
"ec2:TerminateInstance",
"ec2:TerminateInstances",
"ec2:AssociateIamInstanceProfile",
"iam:GetRole",
"iam:PassRole",
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents"
"logs:PutLogEvents",
"s3:ListAllMyBuckets"
]
resources = ["*"]
}
Expand Down

0 comments on commit 7cde0ab

Please sign in to comment.