chore: grant Jake playground ec2 ssh permissions

rust-lang · Sep 25, 2024 · b5a8c2e · b5a8c2e
1 parent 78f1e4d
commit b5a8c2e
Showing 1 changed file with 20 additions and 0 deletions.
diff --git a/terraform/team-members-access/infra-deploy-playground.tf b/terraform/team-members-access/infra-deploy-playground.tf
@@ -30,6 +30,26 @@ resource "aws_iam_group_policy" "infra_deploy_playground" {
           "arn:aws:ssm:us-west-1:890664054962:parameter/staging/ansible/all/*",
         ]
       },
+      {
+        "Effect" : "Allow",
+        "Action" : "ec2-instance-connect:SendSSHPublicKey",
+        "Resource" : [
+          "arn:aws:ec2:us-west-1:890664054962:instance/i-04db6ae41566bd1d9",
+        ],
+        "Condition" : {
+          "StringEquals" : {
+            "ec2:osuser" : "shepmaster"
+          }
+        }
+      },
+      {
+        "Effect" : "Allow",
+        "Action" : [
+          "ec2:DescribeInstances",
+          "ec2:DescribeVpcs"
+        ],
+        "Resource" : "*"
+      }
     ]
   })
 }