Fix

Veetaha · Veetaha · commit b2589ceef2f4 · 2025-03-27T21:49:42.000Z
diff --git a/asset-account/terraform/stack-set/examples/self-managed/admin.tf b/asset-account/terraform/stack-set/examples/self-managed/admin.tf
@@ -38,17 +38,17 @@ resource "aws_iam_role" "admin" {
           "Principal" : {
             "Service" : "cloudformation.amazonaws.com"
           },
-          "Action" : "sts:AssumeRole"
+          "Action" : "sts:AssumeRole",
+          "Condition" : {
+            "StringEquals" : {
+              "aws:SourceAccount" : local.admin_account_id
+            },
+            "StringLike" : {
+              "aws:SourceArn" : "arn:aws:cloudformation:*:${local.admin_account_id}:stackset/*"
+            }
+          }
         }
       ],
-      "Condition" : {
-        "StringEquals" : {
-          "aws:SourceAccount" : local.admin_account_id
-        },
-        "StringLike" : {
-          "aws:SourceArn" : "arn:aws:cloudformation:*:${local.admin_account_id}:stackset/*"
-        }
-      }
     }
   )
 }
