VED-500: remove unused permissions

Akol125 · Akol125 · commit ac609496af6e · 2025-08-26T14:24:11.000+01:00
diff --git a/terraform/csoc_cloudwatch.tf b/terraform/csoc_cloudwatch.tf
@@ -31,68 +31,4 @@ resource "aws_iam_role_policy" "eventbridge_forwarder_policy" {
       ]
     }]
   })
-}
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-resource "aws_iam_role" "dynamo_s3_access_role" {
-  name = "${local.short_prefix}-dynamo-s3-access-role"
-  assume_role_policy = jsonencode({
-    Version : "2012-10-17",
-    Statement : [
-      {
-        Effect : "Allow",
-        Principal : {
-          AWS : "arn:aws:iam::${var.dspp_core_account_id}:root"
-        },
-        Action : "sts:AssumeRole"
-      }
-    ]
-  })
-}
-
-resource "aws_iam_role_policy" "dynamo_s3_access_policy" {
-  name = "${local.short_prefix}-dynamo_s3_access-policy"
-  role = aws_iam_role.dynamo_s3_access_role.id
-  policy = jsonencode({
-    Version = "2012-10-17",
-    Statement = [
-      {
-        Effect = "Allow",
-        Action = [
-          "dynamodb:BatchGetItem",
-          "dynamodb:GetItem",
-          "dynamodb:Query"
-        ],
-        Resource = [
-          aws_dynamodb_table.delta-dynamodb-table.arn,
-          "${aws_dynamodb_table.delta-dynamodb-table.arn}/index/*"
-        ]
-      }
-    ]
-  })
-}
+}
