CodeBuild IAM角色承担了利用terraform jsoncode的角色
CodeBuild IAM角色承担了利用terraform jsoncode的角色
提问于 2022-02-12 12:01:16
目前,我的策略是使用assume_role_policy = <
resource "aws_iam_role" "codebuild_service_role" {
name = "codebuildservicerole"
assume_role_policy = jsonencode ({
version = "2012-10-17"
Statement = [
{
Action = "sts:AssumeRole"
Sid = ""
Effect = "Allow"
Principal = {
Service = ["codebuild.amazonaws.com","codepipeline.amazonaws.com"]
}
},
]
})
}回答 1
Stack Overflow用户
发布于 2022-02-12 12:32:37
在IAM模式中,多个服务主体是逗号分隔的,而不是数组/列表:
assume_role_policy = jsonencode({
version = "2012-10-17"
Statement = [
{
Action = "sts:AssumeRole"
Sid = ""
Effect = "Allow"
Principal = {
Service = "codebuild.amazonaws.com,codepipeline.amazonaws.com"
}
},
]
})页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/71091669
复制相关文章
相似问题
腾讯云开发者
