Adding Logs to S3 from the Load Balancer

thisisqubika · Apr 9, 2024 · 5d2b10d · 5d2b10d
1 parent 75328e2
commit 5d2b10d
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 4 deletions.
diff --git a/.github/workflows/build_and_deploy.yml b/.github/workflows/build_and_deploy.yml
@@ -36,9 +36,9 @@ jobs:
  run: terraform init
  working-directory: terraform
 
- # - name: Terraform Refresh
- #  run: terraform refresh
- #  working-directory: terraform
+ - name: Terraform Refresh
+ run: terraform refresh
+ working-directory: terraform
 
  - name: Terraform Plan
  run: terraform plan -out=tfplan

diff --git a/terraform/iam.tf b/terraform/iam.tf
@@ -1,5 +1,7 @@
 # POLICY TO LET BUCKET PERMISSIONS:
 
+
+# subir como data y statement como en el infra ops en vez de esta forma:
 resource "aws_s3_bucket_policy" "alb_log_bucket_policy" {
  bucket = aws_s3_bucket.nlb_logs.id
 
@@ -11,7 +13,7 @@ resource "aws_s3_bucket_policy" "alb_log_bucket_policy" {
  Principal = {
  Service = "elasticloadbalancing.amazonaws.com"
  },
- Action = "s3:PutObject",
+ Action = "s3:*",
  Resource = "${aws_s3_bucket.nlb_logs.arn}/*",
  Condition = {
  StringEquals = {