No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

In general in Pulumi, _getPolicyDocument_ isn't needed. You can assign a simple JSON object (technically of type _aws.iam.PolicyDocument_) to a Role as its policy (or to anything that has a policy). Would that make testing easier?

Untitled

Alright. Yes. That makes sense. I haven’t thought about that. I’ll give that a try.
I wasn’t aware we could just assign a JSON. For some reason I thought it only accepted json string :man-facepalming:
Thank you <@U012UJTT55M>!

But what is then the use case of `getPolicyDocument`.

It's a carryover from the Terraform code where you can't write JSON.

Well, that will certainly simplify testing!