Module: Jets::Resource::Iam::BaseRoleDefinition

Included in:: ApplicationRole, ClassRole, FunctionRole

Defined in:: lib/jets/resource/iam/base_role_definition.rb

Instance Method Summary collapse

Instance Method Details

#definition ⇒ `Object`

# File 'lib/jets/resource/iam/base_role_definition.rb', line 3

def definition
  logical_id = role_logical_id

  definition = {
    logical_id => {
      type: "AWS::IAM::Role",
      properties: {
        role_name: role_name,
        path: "/",
        assume_role_policy_document: {
          version: "2012-10-17",
          statement: [{
            effect: "Allow",
            principal: {service: ["lambda.amazonaws.com"]},
            action: ["sts:AssumeRole"]}
          ]
        }
      }
    }
  }

  definition[logical_id][:properties][:policies] = [
    policy_name: "#{role_name}-policy",
    policy_document: policy_document,
  ] unless policy_document['Statement'].empty?

  unless managed_policy_arns.empty?
    definition[logical_id][:properties][:managed_policy_arns] = managed_policy_arns
  end

  definition
end

#managed_policy_arns ⇒ `Object`



40
41
42

# File 'lib/jets/resource/iam/base_role_definition.rb', line 40

def managed_policy_arns
  ManagedPolicy.new(@managed_policy_definitions).arns
end

#policy_document ⇒ `Object`



36
37
38

# File 'lib/jets/resource/iam/base_role_definition.rb', line 36

def policy_document
  PolicyDocument.new(@policy_definitions).policy_document
end

Module: Jets::Resource::Iam::BaseRoleDefinition

Instance Method Summary collapse

Instance Method Details

#definition ⇒ Object

#managed_policy_arns ⇒ Object

#policy_document ⇒ Object

#definition ⇒ `Object`

#managed_policy_arns ⇒ `Object`

#policy_document ⇒ `Object`