From 2045888e1ae497444c58347096547f0475bba7a1 Mon Sep 17 00:00:00 2001
From: Alex Schofield <git@ajschof.me>
Date: Tue, 20 Aug 2024 00:51:11 +0100
Subject: infra(tf): add resource access for secrets-manager policy doc

---
 terraform/iam.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/terraform/iam.tf b/terraform/iam.tf
index a36cfdf..a8054ca 100644
--- a/terraform/iam.tf
+++ b/terraform/iam.tf
@@ -181,7 +181,7 @@ data "aws_iam_policy_document" "secrets_manager_policy_doc" {
     actions = [
       "secretsmanager:GetSecretValue"
     ]
-    resources = []
+    resources = ["arn:aws:secretsmanager:${data.aws_region.current.name}:${data.aws_caller_identity.current.account_id}:secret:bentley-secrets-Na0yc8"]
   }
 }
 
-- 
cgit v1.2.3