Fix S3 bucket policy.

sfc-gh-pkommini · sfc-gh-pkommini · commit 89917de267d7 · 2023-10-26T20:03:38.000-07:00
diff --git a/s3.tf b/s3.tf
@@ -21,13 +21,6 @@ resource "aws_s3_bucket_acl" "logs_bucket_acl" {
   depends_on = [aws_s3_bucket_ownership_controls.logs_bucket_ownership[0]]
 }
 
-resource "aws_s3_bucket_policy" "allow_access_from_eks" {
-  count = var.create_logs_bucket == true ? 1 : 0
-
-  bucket = aws_s3_bucket.logs_bucket[0].id
-  policy = data.aws_iam_policy_document.allow_access_from_eks.json
-}
-
 data "aws_iam_policy_document" "allow_access_from_eks" {
   count = var.create_logs_bucket == true ? 1 : 0
 
@@ -47,3 +40,10 @@ data "aws_iam_policy_document" "allow_access_from_eks" {
     ]
   }
 }
+
+resource "aws_s3_bucket_policy" "allow_access_from_eks" {
+  count = var.create_logs_bucket == true ? 1 : 0
+
+  bucket = aws_s3_bucket.logs_bucket[0].id
+  policy = data.aws_iam_policy_document.allow_access_from_eks[0].json
+}

Original file line number	Diff line number	Diff line change
`@@ -21,13 +21,6 @@ resource "aws_s3_bucket_acl" "logs_bucket_acl" {`
`21`	`21`	`depends_on = [aws_s3_bucket_ownership_controls.logs_bucket_ownership[0]]`
`22`	`22`	`}`
`23`	`23`
`24`		`-resource "aws_s3_bucket_policy" "allow_access_from_eks" {`
`25`		`- count = var.create_logs_bucket == true ? 1 : 0`
`26`		`-`
`27`		`- bucket = aws_s3_bucket.logs_bucket[0].id`
`28`		`- policy = data.aws_iam_policy_document.allow_access_from_eks.json`
`29`		`-}`
`30`		`-`
`31`	`24`	`data "aws_iam_policy_document" "allow_access_from_eks" {`
`32`	`25`	`count = var.create_logs_bucket == true ? 1 : 0`
`33`	`26`
`@@ -47,3 +40,10 @@ data "aws_iam_policy_document" "allow_access_from_eks" {`
`47`	`40`	`]`
`48`	`41`	`}`
`49`	`42`	`}`
	`43`	`+`
	`44`	`+resource "aws_s3_bucket_policy" "allow_access_from_eks" {`
	`45`	`+ count = var.create_logs_bucket == true ? 1 : 0`
	`46`	`+`
	`47`	`+ bucket = aws_s3_bucket.logs_bucket[0].id`
	`48`	`+ policy = data.aws_iam_policy_document.allow_access_from_eks[0].json`
	`49`	`+}`