@@ -806,82 +806,6 @@ GithubOidcWorkflowsProdNextflowInfra:
806806 - !Ref WorkflowsNextflowProdAccount
807807 Region : us-east-1
808808
809- GithubOidcBridgeDigitalHealthOpenBridgeWeb :
810- Type : update-stacks
811- DependsOn : GithubOidcSageBionetworks
812- Template : https://raw.githubusercontent.com/Sage-Bionetworks/aws-infra/v0.7.6/templates/IAM/github-oidc-provider.j2
813- StackName : !Sub ${resourcePrefix}-${appName}-bridgedigitalhealth-openbridgeweb
814- Parameters :
815- ProviderArn : !CopyValue [ !Sub '${resourcePrefix}-${appName}-ProviderArn' ]
816- ProviderRoleName : !Sub ${resourcePrefix}-${appName}-bridgedigitalhealth-openbridgeweb
817- PolicyDocument : |
818- {
819- "Version": "2012-10-17",
820- "Statement": [
821- {
822- "Sid": "ListObjectsInBucket",
823- "Effect": "Allow",
824- "Action": [ "s3:GetBucketLocation", "s3:ListBucket", "s3:ListBucketMultipartUploads" ],
825- "Resource": [
826- "arn:aws:s3:::staging.studies.mobiletoolbox.org",
827- "arn:aws:s3:::prod.studies.mobiletoolbox.org",
828- "arn:aws:s3:::staging-arcdashboard-sagebionetwork-websitebucket-bd4g741peby9",
829- "arn:aws:s3:::prod-arcdashboard-sagebionetworks-o-websitebucket-1f1fae0cp8k4e",
830- "arn:aws:s3:::staging-studies-bridgedigital-healt-websitebucket-llv54doyeqrl",
831- "arn:aws:s3:::staging-bridgedigital-health-static-websitebucket-16zqwmvoy16o",
832- "arn:aws:s3:::prod-bridgedigital-health-static-websitebucket-iadz6lysjo5v",
833- "arn:aws:s3:::prod-studies-bridgedigital-health-websitebucket-1rc2pmoctily2",
834- "arn:aws:s3:::staging-inv-arcdashboard-sagebionet-websitebucket-vm8ncc5v2r7h",
835- "arn:aws:s3:::prod-inv-arcdashboard-sagebionetwor-websitebucket-1jdhcaenu9tlz"
836- ]
837- },
838- {
839- "Sid": "AllObjectActions",
840- "Effect": "Allow",
841- "Action": [ "s3:PutObject", "s3:GetObject", "s3:DeleteObject", "s3:*Multipart*" ],
842- "Resource": [
843- "arn:aws:s3:::staging.studies.mobiletoolbox.org/*",
844- "arn:aws:s3:::prod.studies.mobiletoolbox.org/*",
845- "arn:aws:s3:::staging-arcdashboard-sagebionetwork-websitebucket-bd4g741peby9/*",
846- "arn:aws:s3:::prod-arcdashboard-sagebionetworks-o-websitebucket-1f1fae0cp8k4e/*",
847- "arn:aws:s3:::staging-studies-bridgedigital-healt-websitebucket-llv54doyeqrl/*",
848- "arn:aws:s3:::staging-bridgedigital-health-static-websitebucket-16zqwmvoy16o/*",
849- "arn:aws:s3:::prod-bridgedigital-health-static-websitebucket-iadz6lysjo5v/*",
850- "arn:aws:s3:::prod-studies-bridgedigital-health-websitebucket-1rc2pmoctily2/*",
851- "arn:aws:s3:::staging-inv-arcdashboard-sagebionet-websitebucket-vm8ncc5v2r7h/*",
852- "arn:aws:s3:::prod-inv-arcdashboard-sagebionetwor-websitebucket-1jdhcaenu9tlz/*"
853- ]
854- },
855- {
856- "Sid": "CloudfrontActions",
857- "Effect": "Allow",
858- "Action": [ "cloudfront:CreateInvalidation" ],
859- "Resource": [
860- "arn:aws:cloudfront::797640923903:distribution/E2H7LCB4G4JGGA",
861- "arn:aws:cloudfront::797640923903:distribution/E1NB88XGDVLVG9",
862- "arn:aws:cloudfront::797640923903:distribution/EU2UCL46LHZST",
863- "arn:aws:cloudfront::797640923903:distribution/E4NMTZ3W9RYFH",
864- "arn:aws:cloudfront::797640923903:distribution/E3S5F61K1105VI",
865- "arn:aws:cloudfront::797640923903:distribution/E2ZGRN11WZ963H",
866- "arn:aws:cloudfront::797640923903:distribution/E1DXTVP92OX5WR",
867- "arn:aws:cloudfront::797640923903:distribution/E2EZ0TY3ZSTV6O",
868- "arn:aws:cloudfront::797640923903:distribution/E2U03A3USH7ASI",
869- "arn:aws:cloudfront::797640923903:distribution/E3VLOHRGISMQNR"
870- ]
871- }
872- ]
873- }
874- TemplatingContext :
875- GitHubOrg : " BridgeDigitalHealth"
876- Repositories :
877- - name : " open-bridge-web"
878- branches : [ "main", "feature", "staging", "production" ]
879- - name : " open-bridge-static"
880- branches : [ "main", "feature", "staging", "production" ]
881- DefaultOrganizationBinding :
882- Account : !Ref SageITAccount
883- Region : us-east-1
884-
885809GithubOidcAgoraInfraV3 :
886810 Type : update-stacks
887811 DependsOn : GithubOidcSageBionetworks
0 commit comments