No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

```    const instanceAssumeRolePolicyDocument = aws.iam.getPolicyDocument({
      statements: [
        {
          actions: ['sts:AssumeRole'],
          principals: [
            {
              type: 'Service',
              identifiers: ['<http://ec2.amazonaws.com|ec2.amazonaws.com>'],
            },
          ],
        },
      ],
    })
    const oidcAssumeRolePolicyDocument = pulumi
      .all([clusterOidcProviderUrl, clusterOidcProviderArn])
      .apply(([url, arn]) =&gt;
        aws.iam.getPolicyDocument({
          statements: [
            {
              effect: 'Allow',
              actions: ['sts:AssumeRoleWithWebIdentity'],
              principals: [
                {
                  type: 'Federated',
                  identifiers: [arn],
                },
              ],
              conditions: [
                {
                  test: 'StringEquals',
                  variable: `${url.replace('https://', '')}:aud`,
                  values: [`<http://sts.amazonaws.com|sts.amazonaws.com>`],
                },
              ],
            },
          ],
        })
      )```