This message was deleted Pulumi Community #aws

Join Slack

This message was deleted.

# aws

sparse-intern-71089

05/18/2022, 5:55 PM

This message was deleted.

victorious-church-57397

05/18/2022, 7:51 PM

if you’re using typescript (which im guessing you are due to json.stringify reference) you can create an object which is of type iam.PolicyDocument and looks much tidier and easier to work with than json stringify… see example :

Copy code

const examplePolicyDocument: iam.PolicyDocument = {
  Version: '2012-10-17',
  Statement: [
    {
      Effect: 'Allow',
      Action: ['s3:GetBucketAcl', 's3:ListBucket', 's3:PutObject'],
      Resource: [pulumi.interpolate`${bucket.arn}`, pulumi.interpolate`${bucket.arn}/*`],
    },
  ],
};

and you can use like this:

Copy code

new iam.RolePolicy(
  'exampleRolePolicy',
  {
    role: exampleRole.id,
    policy: examplePolicyDocument,
  },
);

polite-king-94596

05/18/2022, 8:18 PM

oh i see its defined as a type, and not a resource in the pulumi/aws lib

little-cartoon-10569

05/18/2022, 8:40 PM

FYI @victorious-church-57397: pulumi.interpolate`${bucket.arn}` can be rewritten as

bucket.arn

victorious-church-57397

05/18/2022, 8:41 PM

The bucket in question is imported from a different file so had to use interpolate

little-cartoon-10569

05/18/2022, 8:41 PM

bucket

is an object and

bucket.arn

is an ARN, then you don't need interpolate.

little-cartoon-10569

05/18/2022, 8:42 PM

interpolate

is just a convenience function for

s.apply(s => s.toString())

little-cartoon-10569

05/18/2022, 8:42 PM

With interpolation added, obviously 🙂

victorious-church-57397

05/18/2022, 8:43 PM

Yeah, aware of that cheers mate but was getting an error suggesting that we used interpolate so just followed the docs! Normally just use the object where I can

👍 1

96 Views

Open in Slack

Previous Next