mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-12-29 01:16:12 -05:00
aws: add needed IAM permission for join service
This commit is contained in:
parent
f164af29cf
commit
f7a5f299a0
@ -109,7 +109,8 @@ resource "aws_iam_policy" "control_plane_policy" {
|
||||
"logs:DescribeLogGroups",
|
||||
"logs:ListTagsLogGroup",
|
||||
"logs:CreateLogStream",
|
||||
"tag:GetResources"
|
||||
"tag:GetResources",
|
||||
"ec2:DescribeImages"
|
||||
],
|
||||
"Resource": [
|
||||
"*"
|
||||
@ -172,7 +173,8 @@ resource "aws_iam_policy" "worker_node_policy" {
|
||||
"logs:DescribeLogGroups",
|
||||
"logs:ListTagsLogGroup",
|
||||
"logs:CreateLogStream",
|
||||
"tag:GetResources"
|
||||
"tag:GetResources",
|
||||
"ec2:DescribeImages"
|
||||
],
|
||||
"Resource": "*"
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user