abundant-hair-53100
09/13/2022, 7:49 AMaws:iam:Policy (confirm-user-signup-role-policy):
error: 1 error occurred:
* error creating IAM Policy confirm-user-signup-role-policy-18437fc: MalformedPolicyDocument: Partition "
1" is not valid for resource "arn:
1: o.apply(v => v.toJSON())
2: o.apply(v => JSON.stringify(v))
My code:
const confirmUserIamRolePolicy = new aws.iam.Policy(
'confirm-user-signup-role-policy',
{
policy: JSON.stringify({
Version: '2012-10-17',
Statement: [
{
Effect: 'Allow',
Action: [DBAction.Put],
Resource: usersTable.arn.apply((arn) => `${arn}`),
},
],
}),
}
)
export const confirmUserIamRole = new aws.iam.Role('confirm-user-signup-role', {
assumeRolePolicy: aws.iam.assumeRolePolicyForPrincipal({
Service: '<http://lambda.amazonaws.com|lambda.amazonaws.com>',
}),
managedPolicyArns: [confirmUserIamRolePolicy.arn],
})
const confirmUserIamRolePolicyAttachment = new aws.iam.PolicyAttachment(
'confirm-user-signup-role-policy-attachment',
{
policyArn: confirmUserIamRolePolicy.arn,
roles: [confirmUserIamRole],
}
)
export const postConfirmationLambda = new aws.lambda.CallbackFunction(
'post-confirmation-signup-lambda',
{
runtime: 'nodejs14.x',
callback: confirmUserSignupHandler,
role: confirmUserIamRole,
environment: {
variables: {
USERS_TABLE: usersTable.name,
REGION: region,
},
},
}
)
In the docs I mostly see Resource: '*'
but havent found a place where a policy is for a specific resourcevictorious-church-57397
09/13/2022, 12:07 PMabundant-hair-53100
09/13/2022, 1:24 PMmillions-furniture-75402
09/13/2022, 1:28 PM