Skip to content

Commit f8b2a7d

Browse files
fcracker79fcracker79
committed
Permissions to fetch roles
1 parent c814e14 commit f8b2a7d

File tree

1 file changed

+5
-0
lines changed

1 file changed

+5
-0
lines changed

modules/response_actions.cft.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -262,6 +262,11 @@ Resources:
262262
- lambda:GetFunction
263263
Resource:
264264
- !Sub "arn:${Partition}:lambda:*:${AWS::AccountId}:function:sysdig-secure-ra-${NameSuffix}-*"
265+
- Effect: Allow
266+
Action:
267+
- iam:GetRole
268+
Resource:
269+
- !Sub "arn:${Partition}:iam::${AWS::AccountId}:role/sysdig-secure-ra-${NameSuffix}-*"
265270
Tags:
266271
- Key: Name
267272
Value: !Sub sysdig-secure-ra-${NameSuffix}-cross-account-invoker

0 commit comments

Comments
 (0)