raphink · November 26, 2017 08:08
diff --git a/terraboard.tf b/terraboard.tf

 data "aws_iam_policy_document" "terraboard" {
  statement {
    sid = "ReadOnly"

    actions = [
      "s3:GetObject",
      "s3:ListBucket",
      "s3:ListBucketVersions",
      "s3:GetObjectVersion",
    ]

    resources = [
      "arn:aws:s3:::my-terraform-state/*",
      "arn:aws:s3:::my-terraform-state",
    ]

    effect = "Allow"

    principals {
      type        = "AWS"
      identifiers = ["${aws_iam_user.terraboard.arn}"]
    }
  }
 }

	data "aws_iam_policy_document" "terraboard" {
	statement {
	sid = "ReadOnly"

	actions = [
	"s3:GetObject",
	"s3:ListBucket",
	"s3:ListBucketVersions",
	"s3:GetObjectVersion",
	]

	resources = [
	"arn:aws:s3:::my-terraform-state/*",
	"arn:aws:s3:::my-terraform-state",
	]

	effect = "Allow"

	principals {
	type = "AWS"
	identifiers = ["${aws_iam_user.terraboard.arn}"]
	}
	}
	}