Skip to content

Commit c1daaab

Browse files
committed
Trying to create a role for the aws lambda function
1 parent d0ffb28 commit c1daaab

3 files changed

Lines changed: 30 additions & 3 deletions

File tree

aws/infrastructure/main.tf

Lines changed: 24 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -17,6 +17,28 @@ provider "aws" {
1717
region = var.region
1818
}
1919

20-
resource "aws_sqs_queue" "terraform_queue" {
21-
name = var.queue_name
20+
resource "aws_sqs_queue" "subscriber_queue" {
21+
name = var.queue_name
22+
kms_master_key_id = "alias/aws/sqs"
23+
kms_data_key_reuse_period_seconds = 300
24+
}
25+
26+
resource "aws_iam_role" "subscriber_lambda_role" {
27+
name = var.lambda_role_name
28+
path = "/service-role/"
29+
30+
inline_policy {
31+
name = "lambda_role_inline_policy"
32+
33+
policy = jsonencode({
34+
Version = "2012-10-17"
35+
Statement = [
36+
{
37+
Action = ["sqs:*"]
38+
Effect = "Allow"
39+
Resource = "*"
40+
},
41+
]
42+
})
43+
}
2244
}
Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,2 +1,3 @@
11
region = "#{Project.AWS.Region}"
2-
queue_name = "#{Project.AWS.Queue.Name}"
2+
queue_name = "#{Project.AWS.Queue.Name}"
3+
lambda_role_name = "#{Project.AWS.Lambda.Role.Name}"

aws/infrastructure/variables.tf

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,4 +4,8 @@ variable "region" {
44

55
variable "queue_name" {
66
type = string
7+
}
8+
9+
variable "lambda_role_name" {
10+
type = string
711
}

0 commit comments

Comments
 (0)