alexott
commented
10 months ago In general looks good, was it tested somewhere? I don't have environment to test right now
Closed hectorcast-db closed 9 months ago
alexott
commented
10 months ago In general looks good, was it tested somewhere? I don't have environment to test right now
hectorcast-db
commented
9 months ago @yuchenhuo @alexott
I just tested creating the policy and role from the example.
My understanding is that the condition is required if you want to add permissions in the assume_role_policy, but not for the permission policy itself.
This is because the role in the assume_role_policy must exist at creation time, so we get a chicken and egg problem.
But using assume_role_policies, seems a better choice. Let me try to rewrite this.
Update UC example to allow role to assume-itself