Skip to content

Instantly share code, notes, and snippets.

@KyMidd

KyMidd/hub_ado_join_pak.tf Secret

Created June 20, 2021 18:51
Show Gist options
  • Save KyMidd/370c4a463cc1ce0a420d07f643aea53c to your computer and use it in GitHub Desktop.
Save KyMidd/370c4a463cc1ce0a420d07f643aea53c to your computer and use it in GitHub Desktop.
Download ZIP
Raw
hub_ado_join_pak.tf
resource "aws_secretsmanager_secret_policy" "hub_ado_join_pak" {
secret_arn = aws_secretsmanager_secret.hub_ado_join_pak.arn
policy = jsonencode(
{
"Version" : "2012-10-17",
"Statement" : [{
"Sid" : "AzureDevOpsBuildersSecretsAccess",
"Effect" : "Allow",
"Action" : "secretsmanager:GetSecretValue",
"Resource" : "*",
"Principal" : {
"AWS" : [
"arn:aws:iam::bbbbbbbbbb:role/SpokeABuilderExecutionRole"
]
}
}]
})
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment