Skip to content
This repository has been archived by the owner on Dec 6, 2024. It is now read-only.

Commit

Permalink
fix: Allow CICD pipeline to have cognito permission for creating root…
Browse files Browse the repository at this point in the history 
… user (#914)

* fix: Allow CICD pipeline to have cognito permission for creating root user

* Add AdminDeleteUser and SignUp permission

Co-authored-by: Tim Nguyen <thingut@amazon.com>
  • Loading branch information
@nguyen102
nguyen102 and Tim Nguyen authored Feb 10, 2022
1 parent 86c6e19 commit 93618cb
Showing 1 changed file with 10 additions and 0 deletions.
10 changes: 10 additions & 0 deletions main/cicd/cicd-pipeline/config/infra/cloudformation.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -413,6 +413,16 @@ Resources:
- !Sub 'arn:aws:catalog:${AWS::Region}:${AWS::AccountId}:product/*'
- !Sub arn:${AWS::Partition}:catalog:${AWS::Region}:${AWS::AccountId}:*
- !Ref AWS::NoValue
- !If
- RunTestsAgainstTargetEnv
- Effect: 'Allow'
Action:
- cognito-idp:AdminInitiateAuth
- cognito-idp:AdminDeleteUser
- cognito-idp:SignUp
Resource:
- !Sub 'arn:aws:cognito-idp:${AWS::Region}:${AWS::AccountId}:userpool/*'
- !Ref AWS::NoValue

AppDeployerRole:
Type: AWS::IAM::Role
Expand Down

0 comments on commit 93618cb

Please sign in to comment.