File tree Expand file tree Collapse file tree 2 files changed +5
-0
lines changed
infrastructure/stacks/iams-developer-roles Expand file tree Collapse file tree 2 files changed +5
-0
lines changed Original file line number Diff line number Diff line change @@ -482,6 +482,8 @@ resource "aws_iam_policy" "iam_management" {
482482 " iam:DetachRolePolicy"
483483 " iam:CreatePolicy"
484484 " iam:CreatePolicyVersion"
485+ " iam:DeletePolicy"
486+ " iam:DeletePolicyVersion"
485487 " iam:TagRole"
486488 " iam:PassRole"
487489 " iam:TagPolicy"
@@ -502,6 +504,7 @@ resource "aws_iam_policy" "iam_management" {
502504 " arn:aws:iam::*:policy/*api-gateway-logging-policy"
503505 " arn:aws:iam::*:policy/*PermissionsBoundary"
504506 " arn:aws:iam::*:policy/*PutSubscriptionFilterPolicy"
507+ " arn:aws:iam::*:policy/*CWLogsToCSOCDestinationPolicy"
505508 # VPC flow logs role
506509 " arn:aws:iam::*:role/vpc-flow-logs-role"
507510 # API role
Original file line number Diff line number Diff line change @@ -108,6 +108,8 @@ data "aws_iam_policy_document" "permissions_boundary" {
108108 " iam:DetachRolePolicy"
109109 " iam:CreatePolicy"
110110 " iam:CreatePolicyVersion"
111+ " iam:DeletePolicy"
112+ " iam:DeletePolicyVersion"
111113 " iam:TagRole"
112114 " iam:UntagPolicy"
113115 " iam:PassRole"
You can’t perform that action at this time.
0 commit comments