From 270e9f1ff6fdaf71717cd279ce8ad6378a6b6ddc Mon Sep 17 00:00:00 2001
From: Ronaldo Macapobre <rmacapob@gov.bc.ca>
Date: Tue, 27 Aug 2024 00:01:49 +0000
Subject: [PATCH] Revert Resource=* first

---
 infrastructure/cloud/modules/security/iam.tf | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/infrastructure/cloud/modules/security/iam.tf b/infrastructure/cloud/modules/security/iam.tf
index 6ef7e5b2..f8d02dde 100644
--- a/infrastructure/cloud/modules/security/iam.tf
+++ b/infrastructure/cloud/modules/security/iam.tf
@@ -45,7 +45,7 @@ resource "aws_iam_role_policy" "ecs_execution_policy" {
         ],
         Effect = "Allow",
         Resource = [
-          var.ecr_repository_arn
+          "*"
         ]
       },
       {
@@ -54,10 +54,8 @@ resource "aws_iam_role_policy" "ecs_execution_policy" {
           "logs:PutLogEvents",
           "logs:CreateLogGroup"
         ],
-        Effect = "Allow",
-        Resource = [
-          var.ecs_web_td_log_group_arn
-        ]
+        Effect   = "Allow",
+        Resource = "arn:aws:logs:*:*:*"
       }
     ]
   })