Merge pull request #35 from maael/fix/boundary-edge-proxy

ofhouse · web-flow · commit 2ec871c89958 · 2021-01-15T21:04:02.000+01:00
fix: 🐛 Pass permissions boundary to edge proxy lambda
diff --git a/main.tf b/main.tf
@@ -143,6 +143,7 @@ module "proxy" {
   cloudfront_minimum_protocol_version = var.cloudfront_minimum_protocol_version
   debug_use_local_packages            = var.debug_use_local_packages
   tags                                = var.tags
+  lambda_role_permissions_boundary    = var.lambda_role_permissions_boundary
 
   providers = {
     aws = aws.global_region
diff --git a/modules/proxy/main.tf b/modules/proxy/main.tf
@@ -43,6 +43,7 @@ module "edge_proxy" {
   description   = "Managed by Terraform-next.js"
   handler       = "handler.handler"
   runtime       = var.lambda_default_runtime
+  role_permissions_boundary = var.lambda_role_permissions_boundary
 
   create_package         = false
   local_existing_package = module.proxy_package.abs_path
diff --git a/modules/proxy/variables.tf b/modules/proxy/variables.tf
@@ -65,3 +65,8 @@ variable "tags" {
   type    = map(string)
   default = {}
 }
+
+variable "lambda_role_permissions_boundary" {
+  type    = string
+  default = null
+}

Original file line number	Diff line number	Diff line change
`@@ -65,3 +65,8 @@ variable "tags" {`
`65`	`65`	`type = map(string)`
`66`	`66`	`default = {}`
`67`	`67`	`}`
	`68`	`+`
	`69`	`+variable "lambda_role_permissions_boundary" {`
	`70`	`+ type = string`
	`71`	`+ default = null`
	`72`	`+}`