Merge pull request #34 from ONS-Innovation/lambda-s3-perms-fix

TotalDwarf03 · web-flow · commit 98f784431595 · 2024-11-27T09:55:10.000Z
Bug: Lambda IAM Role missing s3:ListBuckets
diff --git a/terraform/data_logger/data.tf b/terraform/data_logger/data.tf
@@ -50,7 +50,8 @@ data "aws_iam_policy_document" "lambda_s3_policy" {
     actions = [
       "s3:ListAllMyBuckets", # Allows listing all buckets in the account
       "s3:GetObject",        # Allows reading objects in buckets
-      "s3:PutObject"         # Allows writing objects to buckets
+      "s3:PutObject",        # Allows writing objects to buckets
+      "s3:ListBucket"
     ]
 
     resources = [

Original file line number	Diff line number	Diff line change
`@@ -50,7 +50,8 @@ data "aws_iam_policy_document" "lambda_s3_policy" {`
`50`	`50`	`actions = [`
`51`	`51`	`"s3:ListAllMyBuckets", # Allows listing all buckets in the account`
`52`	`52`	`"s3:GetObject", # Allows reading objects in buckets`
`53`		`- "s3:PutObject" # Allows writing objects to buckets`
	`53`	`+ "s3:PutObject", # Allows writing objects to buckets`
	`54`	`+ "s3:ListBucket"`
`54`	`55`	`]`
`55`	`56`
`56`	`57`	`resources = [`