In order to make this work with cross-account IAM we had to explicitly add ListBucket to the role we use to build our AMIs. And in order for ListBucket to work properly, we also had to reference the bucket rather than a wildcard path at root.
Issue #, if available:
Description of changes:
Changes to permissions documentation.
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.
Testing Done
See this guide for recommended testing for PRs. Some tests may not apply. Completing tests and providing additional validation steps are not required, but it is recommended and may reduce review time and time to merge.
In order to make this work with cross-account IAM we had to explicitly add ListBucket to the role we use to build our AMIs. And in order for ListBucket to work properly, we also had to reference the bucket rather than a wildcard path at root.
Issue #, if available:
Description of changes:
Changes to permissions documentation.
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.
Testing Done
See this guide for recommended testing for PRs. Some tests may not apply. Completing tests and providing additional validation steps are not required, but it is recommended and may reduce review time and time to merge.