terraform-aws-eks-jx icon indicating copy to clipboard operation
terraform-aws-eks-jx copied to clipboard

Published 20 hours ago verified publisher icon jenkins-x

Improve S3 IAM access

Open chrislovecnm opened this issue 2 years ago • 0 comments

Summary

I am noticing that we are using iam::aws:policy/AmazonS3FullAccess for the build-ctlr. These permission see a bit broad.

Steps to reproduce the behavior

Install

Expected behavior

We only allow the build-ctr iam role to have full access to the buckets that we create.

Actual behavior

We are giving it iam::aws:policy/AmazonS3FullAccess

chrislovecnm avatar Apr 26 '22 20:04 chrislovecnm