Creating a IAM policy for client access in AWS

Rtap-DavidW · September 3, 2018, 3:53pm

Hi
Im looking to create a client policy for accessing the API gateway that serverless has created.
As this is going to be referenced in other projects (roles/ groups) id like to create this with a static name that will not change,

Currently when i create it serverless puts a random string on the end. Is it possible to change this to a fixed name or at least a non changing suffix?

An extract of my serverless.yml is below (resource removed)

Resources:
client-policy:
Type: AWS::IAM::ManagedPolicy
Properties:
Description: “Client Policy”
PolicyDocument:
Version: “2012-10-17”
Statement:
-
Sid: “firstPermission”
Effect: Allow
Action:
- execute-api:Invoke
Resource:
- *

Rtap-DavidW · September 5, 2018, 8:11am

For anyone attempting this idea the solution was to add a ManagedPolicyName to the resource.
this makes serverless/cloudformation create policy versions on an existing policy

Topic		Replies	Views
API Gateway Policy in deployment/service account Serverless Framework aws	0	624	May 16, 2018
IAM Policy + Role for ElasticSearch Serverless Framework iam	0	1434	May 14, 2019
API Gateway Resource Policy Serverless Framework	3	6930	June 14, 2018
How can i add a resource policy to my serverless.yml Serverless Framework aws	1	8120	April 16, 2019
V1.65.0 changed the naming of AWS IAM roles which might be breaking change Serverless Framework aws , lambda , iam	0	505	March 2, 2020

Creating a IAM policy for client access in AWS

Related topics