Skip to content

Commit 007e2d0

Browse files
hobuhobu
committed
add storage
1 parent d47d240 commit 007e2d0

File tree

3 files changed

+12
-1
lines changed

3 files changed

+12
-1
lines changed

terraform/main.tf

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -47,3 +47,8 @@ output "info_lambda_name" {
4747
description = "Lambda Name"
4848
value = module.resources.info_lambda_name
4949
}
50+
51+
output "bucket" {
52+
description = "Storage bucket"
53+
value = module.resources.bucket
54+
}

terraform/resources/roles.tf

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -31,9 +31,14 @@ data "aws_iam_policy_document" "iam_for_lambda_policy_document" {
3131
statement {
3232
actions = [
3333
"s3:GetObject",
34+
"s3:GetBucketTagging",
35+
"s3:PutObjectTagging",
36+
"s3:PutObject",
37+
"s3:ListBucket",
38+
"s3:DeleteObject",
3439
]
3540
effect = "Allow"
36-
resources = ["*"]
41+
resources = [aws_s3_bucket.storage.arn]
3742
sid = "ReadS3"
3843
}
3944

terraform/resources/var.tf

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -33,3 +33,4 @@ output "prefix" {
3333
}
3434

3535

36+

0 commit comments

Comments
 (0)