Skip to content
This repository has been archived by the owner on Mar 12, 2024. It is now read-only.

Commit

Permalink
🔧 Fix IAM Permissions issue
Browse files Browse the repository at this point in the history
  • Loading branch information
@flowirtz
flowirtz authored and Flo committed May 29, 2020
1 parent d0c4d62 commit 8b9d218
Showing 1 changed file with 23 additions and 12 deletions.
35 changes: 23 additions & 12 deletions infrastructure/ecs.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,28 +31,39 @@ resource "aws_iam_policy" "metoffice_task_policy" {
"Version": "2012-10-17",
"Statement": [
{
"Sid": "",
"Sid": "sqs",
"Effect": "Allow",
"Action": [
"sqs:DeleteMessage",
"sqs:GetQueueUrl",
"sqs:ReceiveMessage",
"sqs:GetQueueAttributes",
"s3:ListBucket",
"sqs:ListQueueTags",
"s3:ReplicateObject",
"s3:PutObject",
"s3:GetObject",
"s3:GetObjectTorrent",
"sqs:ListDeadLetterSourceQueues",
"s3:AbortMultipartUpload",
"sqs:DeleteMessageBatch",
"s3:GetObjectVersionAcl",
"s3:GetObjectVersion"
"sqs:DeleteMessageBatch"
],
"Resource": [
"${aws_sqs_queue.metqueue.arn}"
]
},
{
"Sid": "s3_bucket",
"Effect": "Allow",
"Action": [
"s3:ListBucket"
],
"Resource": [
"${aws_s3_bucket.output.arn}"
]
},
{
"Sid": "s3_files",
"Effect": "Allow",
"Action": [
"s3:PutObject",
"s3:GetObject"
],
"Resource": [
"${aws_sqs_queue.metqueue.arn}",
"${aws_s3_bucket.output.arn}",
"${aws_s3_bucket.output.arn}/*"
]
}
Expand Down

0 comments on commit 8b9d218

Please sign in to comment.