Skip to content

Commit

Permalink
revert previous commit
Browse files Browse the repository at this point in the history
  • Loading branch information
@kunduso
kunduso committed Dec 2, 2024
1 parent 3240c3a commit fae3ebe
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
4 changes: 2 additions & 2 deletions app/tf/ecr.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ data "aws_caller_identity" "current" {}
locals {
principal_root_arn = "arn:aws:iam::${data.aws_caller_identity.current.account_id}:root"
development_account = "743794601996"
development_env_role_arn = "arn:aws:iam::${local.development_account}:role/*"
development_env_root_arn = "arn:aws:iam::${local.development_account}:root"
}
#https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_repository
resource "aws_ecr_repository" "image_repo" {
Expand All @@ -28,7 +28,7 @@ resource "aws_ecr_repository_policy" "repository_policy" {
Sid = "AllowCrossAccountPull"
Effect = "Allow"
Principal = {
AWS = "${local.development_env_role_arn}"
AWS = "${local.development_env_root_arn}"
}
Action = [
"ecr:BatchCheckLayerAvailability",
Expand Down
2 changes: 1 addition & 1 deletion app/tf/kms.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ resource "aws_kms_key_policy" "ecr_key_policy" {
{
Effect = "Allow"
Principal = {
AWS = "${local.development_env_role_arn}"
AWS = "${local.development_env_root_arn}"
}
Action = ["kms:Decrypt"]
Resource = "*"
Expand Down

0 comments on commit fae3ebe

Please sign in to comment.