56. Create the IAM role for SNS and SQS to access all the AWS resources?

four-codes commented 1 year ago

your SNS and SQS role name should resemble "role-sns,sqs-januo-001-env-purpose."

fourtimes commented 1 year ago

@januo-io Can there be a default policy in this case ? or Should I delete this?

fourtimes commented 1 year ago

Create the IAM role for SNS to access all the AWS resources using `managed policy`

Go to the "IAM" resource.
Under the resource, we have a "Roles" option.
After that, click on the "create role" option. then we have to select the identity type & use case for SNS.
After click on the "Next" button, We have to enter the "Role Name" in the name of role-sns-ashli-001-dev-allAccess format.
Then, we have to click on the "create role" button.
After creating the role, we have to add the Permissions for "AdministratorAccess".

fourtimes commented 1 year ago

go to the IAM resource.
under the IAM resource, click on the "Roles" option.
then, create the role using API gateway use case & without selecting any policies & the name of role should be role-sns-ashli-001-dev-allAccess.
after creating the role, we have to open the created role.
go to the Permissions Option & click on the Add Permission & click on the Attach Policies
click on the create policy option.
click on the policy editor for JSON option.

create the custom policy for Administrator Access

{
"Version": "2012-10-17",
"Statement": [
    {
        "Effect": "Allow",
        "Action": "*",
        "Resource": "*"
    }

]
}

click on the Next button & enter the policy name in the name of policy-sns-ashli-001-dev-allAccess & create the policy using the create policy button.
go to the Roles menu
click on the role-sns-ashli-001-dev-allAccess
go to the Permissions Option & click on the Add Permission & click on the Attach Policies
select the policy-sns-ashli-001-dev-allAccess policy & click on Add Permission

four-codes commented 1 year ago

perfect