Skip to content

Commit

Permalink
v3.4.1; add logs:ListTagsForResource to build and apply roles
Browse files Browse the repository at this point in the history
  • Loading branch information
@paul-e-allen
paul-e-allen committed Nov 4, 2024
1 parent 572db33 commit 0d4f2f4
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 2 deletions.
3 changes: 3 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,9 @@ Terraform module to create Terraform drift, plan, and apply CodePipelines.

## Change Log

### 3.4.1
- Add `logs:ListTagsForResource` privs to build and apply roles

### 3.4.0
- Add public access block (`aws_s3_bucket_public_access_block`) to resource/pipeline bucket
- Add bucket policy (`aws_s3_bucket_policy`) blocking insecure transport to resource/pipeline bucket
Expand Down
6 changes: 4 additions & 2 deletions shared.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -212,7 +212,8 @@ resource "aws_iam_policy" "build-policy" {
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:DescribeLogGroups",
"logs:ListTagsLogGroup"
"logs:ListTagsLogGroup",
"logs:ListTagsForResource"
]
},
{
Expand Down Expand Up @@ -284,7 +285,8 @@ resource "aws_iam_policy" "apply-policy" {
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:DescribeLogGroups",
"logs:ListTagsLogGroup"
"logs:ListTagsLogGroup",
"logs:ListTagsForResource"
]
},
{
Expand Down

0 comments on commit 0d4f2f4

Please sign in to comment.