Skip to content
This repository was archived by the owner on Aug 2, 2024. It is now read-only.
This repository was archived by the owner on Aug 2, 2024. It is now read-only.

allow ssm:GetParameter with ssm config #61

Open
moritzzimmer/terraform-aws-lambda
#3
Open
allow ssm:GetParameter with ssm config#61
moritzzimmer/terraform-aws-lambda
#3
Assignees
moritzzimmer
Labels
bugSomething isn't working
@moritzzimmer

Description

@moritzzimmer
moritzzimmer
opened on Jul 1, 2020

Currently this module configures the following policy for ssm_parameter_names:

data "aws_iam_policy_document" "ssm_policy_document" {
  count = length(var.ssm_parameter_names)

  statement {
    actions = [
      "ssm:GetParameters",
      "ssm:GetParametersByPath",
    ]

    resources = [
      "arn:aws:ssm:${data.aws_region.current.name}:${data.aws_caller_identity.current.account_id}:parameter/${element(var.ssm_parameter_names, count.index)}",
    ]
  }
}

This datasource should also permit ssm:GetParameter.

Metadata

Metadata

Assignees

Labels

bugSomething isn't working

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions