From 6239189fd4a62c03152040b3d7d6c31a12fc8a96 Mon Sep 17 00:00:00 2001
From: Ronaldo Macapobre <rmacapob@gov.bc.ca>
Date: Tue, 27 Aug 2024 00:23:58 +0000
Subject: [PATCH] Add ecs web td log group arn back

---
 infrastructure/cloud/modules/security/iam.tf | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/infrastructure/cloud/modules/security/iam.tf b/infrastructure/cloud/modules/security/iam.tf
index f3900f12..6ef7e5b2 100644
--- a/infrastructure/cloud/modules/security/iam.tf
+++ b/infrastructure/cloud/modules/security/iam.tf
@@ -54,8 +54,10 @@ resource "aws_iam_role_policy" "ecs_execution_policy" {
           "logs:PutLogEvents",
           "logs:CreateLogGroup"
         ],
-        Effect   = "Allow",
-        Resource = "arn:aws:logs:*:*:*"
+        Effect = "Allow",
+        Resource = [
+          var.ecs_web_td_log_group_arn
+        ]
       }
     ]
   })