Skip to content

Commit ab15f51

Browse files
aidenvaines-cgiaidenvaines-cgi
committed
CCM-8237 sqs resource policy overlaod
CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod CCM-8237 sqs resource policy overlaod
1 parent c1c0fe7 commit ab15f51

3 files changed

Lines changed: 5 additions & 9 deletions

File tree

infrastructure/modules/sqs/data_iam_policy_document_sqs_queue.tf

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -19,4 +19,6 @@ data "aws_iam_policy_document" "sqs_queue" {
1919
identifiers = [var.aws_account_id]
2020
}
2121
}
22+
23+
override_policy_documents = [var.sqs_policy_overload]
2224
}

infrastructure/modules/sqs/sqs_queue_policy.tf

Lines changed: 2 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,5 @@
11
resource "aws_sqs_queue_policy" "sqs_queue_policy" {
22
queue_url = aws_sqs_queue.sqs_queue.id
3-
policy = jsonencode([
4-
data.aws_iam_policy_document.sqs_queue.json,
5-
var.sqs_policy_overload,
6-
])
3+
policy = data.aws_iam_policy_document.sqs_queue.json
74
}
5+

infrastructure/modules/sqs/variables.tf

Lines changed: 1 addition & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -60,11 +60,7 @@ variable "sqs_kms_key_arn" {
6060
variable "sqs_policy_overload" {
6161
type = string
6262
description = "Optional additional policy to extend the SQS Resource Policy"
63-
default = null
64-
validation {
65-
condition = can(jsondecode(var.sqs_policy_overload))
66-
error_message = "sqs_policy_overload must be a valid JSON."
67-
}
63+
default = ""
6864
}
6965

7066
variable "allowed_arns" {

0 commit comments

Comments
 (0)