notid/integreat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Got terraform back up to date.

Browse Source
This commit is contained in:
Bryce Covert
2021-12-18 17:10:04 -08:00
parent 878ceeaa0b
commit d8322bf498
8 changed files with 294 additions and 81 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
terraform/main.tf
View File

@@ -73,6 +73,15 @@ resource "aws_s3_bucket" "data" {
"Effect": "Allow",
"Resource": "arn:aws:s3:::data.${var.stage}.app.integreatconsult.com/*",
"Principal": "*"
},
{
"Action": "s3:*",
"Effect": "Allow",
"Principal": {
"AWS": "${var.task_role_arn}"
},
"Resource": "arn:aws:s3:::data.${var.stage}.app.integreatconsult.com",
"Sid": "AllowReadForProd"
}
]
}
@@ -128,10 +137,12 @@ resource "aws_iam_user_policy_attachment" "app_user_policy" {
output "aws_access_key_id" {
value = "${aws_iam_access_key.app_user.id}"
sensitive = true
}
output "aws_secret_access_key" {
value = "${aws_iam_access_key.app_user.secret}"
sensitive = true
}
output "aws_default_region" {