eventbridge-sns-lambda-terraform: Fix deprecated managed_policy_arns argument

kakakakakku · kakakakakku · commit a20c102d8e30 · 2025-08-14T19:35:54.000+09:00
diff --git a/eventbridge-sns-lambda-terraform/main.tf b/eventbridge-sns-lambda-terraform/main.tf
@@ -106,12 +106,8 @@ resource "aws_lambda_function" "lambda_function" {
   runtime          = "nodejs22.x"
 }
 
-
 resource "aws_iam_role" "lambda_iam_role" {
-  name_prefix         = "LambdaSNSRole-"
-  managed_policy_arns = [
-    data.aws_iam_policy.lambda_basic_execution_role_policy.arn
-  ]
+  name_prefix = "LambdaSNSRole-"
 
   assume_role_policy = <<EOF
 {
@@ -130,6 +126,11 @@ resource "aws_iam_role" "lambda_iam_role" {
 EOF
 }
 
+resource "aws_iam_role_policy_attachment" "lambda_basic_execution" {
+  role       = aws_iam_role.lambda_iam_role.name
+  policy_arn = data.aws_iam_policy.lambda_basic_execution_role_policy.arn
+}
+
 resource "aws_lambda_permission" "with_sns" {
   statement_id  = "AllowExecutionFromSNS"
   action        = "lambda:InvokeFunction"
@@ -138,10 +139,6 @@ resource "aws_lambda_permission" "with_sns" {
   source_arn    = aws_sns_topic.MySNSTopic.arn
 }
 
-
-
-
-
 //---------------------------------------------------------
 // Output
 //---------------------------------------------------------
