Skip to content

Commit

Permalink
Use existing lambda IAM role
Browse files Browse the repository at this point in the history
  • Loading branch information
aloftus23 committed Dec 11, 2024
1 parent e457a57 commit 11722ff
Showing 1 changed file with 1 addition and 69 deletions.
70 changes: 1 addition & 69 deletions backend/serverless.yml
Original file line number Diff line number Diff line change
Expand Up @@ -62,75 +62,7 @@ provider:
deploymentBucket:
serverSideEncryption: AES256
iam:
role:
statements:
# TODO: make the resources more specific. See Resource: '*' was
- Effect: Allow
Action:
- lambda:InvokeAsync
- lambda:InvokeFunction
- cognito-idp:AdminDisableUser
- cognito-idp:ListUsers
- cognito-idp:AdminSetUserPassword
Resource: '*'
- Effect: Allow
Action:
- ecs:RunTask
- ecs:ListTasks
- ecs:DescribeTasks
- ecs:DescribeServices
- ecs:UpdateService
- iam:PassRole
- logs:GetLogEvents
Resource: '*'
- Effect: Allow
Action:
- ses:SendRawEmail
- ses:SendEmail
Resource: '*'
- Effect: Allow
Action:
- s3:GetObject
- s3:GetObjectAcl
- s3:PutObject
- s3:PutObjectAcl
- s3:PutBucketAcl
- s3:GetBucketAcl
Resource: '*'
- Effect: Allow
Action:
- sts:AssumeRole
Resource: '*'
- Effect: Allow
Action:
- sqs:ReceiveMessage
- sqs:DeleteMessage
- sqs:SendMessage
- sqs:GetQueueAttributes
Resource: '*'
- Effect: Allow
Action:
- logs:CreateExportTask
- logs:CreateLogStream
- logs:Describe*
- logs:Get*
- logs:List*
- logs:PutLogEvents
- logs:StartQuery
- logs:StopQuery
- logs:TestMetricFilter
- logs:FilterLogEvents
- logs:StartLiveTail
- logs:StopLiveTail
Resource: '*'
- Effect: Allow
Action:
- ssm:DescribeParameters
- ssm:GetParameter
- ssm:GetParameters
- ssm:GetParametersByPath
- ssm:PutParameter
Resource: '*'
role: arn:aws:iam::957221700844:role/crossfeed-integration-us-east-1-lambdaRole

resources:
Conditions:
Expand Down

0 comments on commit 11722ff

Please sign in to comment.