Skip to content

Commit

Permalink
Add ability to specify IAM Role path.
Browse files Browse the repository at this point in the history
  • Loading branch information
@ndouglas
ndouglas authored Dec 2, 2024
1 parent a1b9285 commit 06cbbea
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions aws/logs_monitoring/template.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -214,6 +214,10 @@ Parameters:
Type: Number
Default: 20
Description: Set the max number of workers sending logs concurrently.
IamRolePath:
Type: String
Default: "/"
Description: The path for the IAM roles.
PermissionsBoundaryArn:
Type: String
Default: ""
Expand Down Expand Up @@ -570,6 +574,7 @@ Resources:
ManagedPolicyArns:
- !Sub "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
- !Sub "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaVPCAccessExecutionRole"
Path: !Ref IamRolePath
PermissionsBoundary: !If
- SetPermissionsBoundary
- !Ref PermissionsBoundaryArn
Expand Down Expand Up @@ -878,6 +883,7 @@ Resources:
ManagedPolicyArns:
- !Sub "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
- !Sub "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaVPCAccessExecutionRole"
Path: !Ref IamRolePath
PermissionsBoundary: !If
- SetPermissionsBoundary
- !Ref PermissionsBoundaryArn
Expand Down

0 comments on commit 06cbbea

Please sign in to comment.