This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # When specifying a named KMS Key for the S3 bucket, the default policy that | |
| # terraform applies causes Access Denied errors for PutObject. This policy | |
| # allows access to users with access to S3. | |
| resource "aws_kms_key" "uploads" { | |
| description = "Encrypts uploads stored in S3" | |
| deletion_window_in_days = 10 | |
| policy = "${data.aws_iam_policy_document.uploads_key_policy.json}" | |
| } |
OlderNewer