Skip to content

Instantly share code, notes, and snippets.

@KyMidd

KyMidd/iam_policy.tf Secret

Last active January 13, 2025 01:53
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save KyMidd/80d6e283d213f86be52ece648e779e68 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save KyMidd/80d6e283d213f86be52ece648e779e68 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
iam_policy.tf
resource "aws_iam_role_policy" "DevOpsBotSlack_ReadSecret" {
name = "ReadSecret"
role = aws_iam_role.Ue1TiDevOpsBotRole.id
policy = jsonencode(
{
"Version" : "2012-10-17",
"Statement" : [
{
"Effect" : "Allow",
"Action" : [
"secretsmanager:GetResourcePolicy",
"secretsmanager:GetSecretValue",
"secretsmanager:DescribeSecret",
"secretsmanager:ListSecretVersionIds"
],
"Resource" : [
data.aws_secretsmanager_secret.devopsbot_secrets_json.arn,
]
},
{
"Effect" : "Allow",
"Action" : "secretsmanager:ListSecrets",
"Resource" : "*"
}
]
}
)
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment