savvamadar
Reputation: 294
DynamoDB Cloudformation Permission
I currently have the following cloudformation .yaml file:
Resources:
DynamoTable:
Type: "AWS::DynamoDB::Table"
Properties:
...
...
...
How do I give other resources permission to query this table?
Upvotes: 3
Views: 3869
Answers (1)
savvamadar
Reputation: 294
Resources:
Service:
Type: "AWS::CloudFormation::Stack"
Properties:
Parameters:
...
...
TaskPolicyArn: !Ref ThisServicePolicy
DynamoTable:
Type: "AWS::DynamoDB::Table"
Properties:
AttributeDefinitions:
...
...
...
ThisServicePolicy:
Type: "AWS::IAM::ManagedPolicy"
Properties:
ManagedPolicyName: SomePolicyName
PolicyDocument:
Version: "2012-10-17"
Statement:
- Effect: "Allow"
Action:
- "dynamodb:GetItem"
- "dynamodb:BatchGetItem"
- "dynamodb:Query"
Resource: "*"
Upvotes: 3
Related Questions
- CloudFormation is not authorized to perform: iam:PassRole on resource
- Permissions on resources defined in cloudformation
- Lambda permission not being created when using cloudformation
- aws cloudformation - permission control / routine
- AWS S3 CloudFormation Read-Only Permission
- CloudFormation Lambda S3 bucket access denied
- CloudFormation Permission Denied for Config Attempting to Invoke Lambda
- CloudFormation, Lambda, S3 - Access denied by s3
- CloudFormation - user does not own network ACL
- Required permissions to user CloudFormer