Skip to content

Commit 5fe0114

Browse files
Tian-2017Tian-2017
authored
AllowCodeStarAndCodeConnectionsAccess (#2544)
1 parent ce51a2e commit 5fe0114

File tree

1 file changed

+10
-2
lines changed

1 file changed

+10
-2
lines changed

terraform/core/48-staging-codebuild-dap-airflow-sync.tf

Lines changed: 10 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -84,8 +84,16 @@ resource "aws_iam_role_policy" "codebuild_dap_airflow_staging_policy" {
8484
Resource = "arn:aws:codebuild:${var.aws_deploy_region}:${var.aws_deploy_account_id}:report-group/${local.identifier_prefix}-dap-airflow-sync*"
8585
},
8686
{
87-
Effect = "Allow"
88-
Action = "codestar-connections:UseConnection"
87+
Sid = "AllowCodeStarAndCodeConnectionsAccess"
88+
Effect = "Allow"
89+
Action = [
90+
"codestar-connections:GetConnection",
91+
"codestar-connections:GetConnectionToken",
92+
"codestar-connections:UseConnection",
93+
"codeconnections:GetConnection",
94+
"codeconnections:GetConnectionToken",
95+
"codeconnections:UseConnection"
96+
]
8997
Resource = aws_codestarconnections_connection.dap_airflow_stg[0].arn
9098
}
9199
]

0 commit comments

Comments
 (0)