Question: launch config ?

2018-02-15 16:03:28

patrickdayton 2018-02-15 16:03:41 Launch Configuration in EC2 Are you trying to set permissions for Users, Instances? Which resource are you trying to restrict?
diane.lakestani 2018-02-15 16:04:25 i want to restrict a bucket of s3
patrickdayton 2018-02-15 16:04:35 Right, but to what?
diane.lakestani 2018-02-15 16:04:42 to the ec2 instances of my elatsic beanstalk application
patrickdayton 2018-02-15 16:05:33 I havent played around in Beanstalk, but Role assignments should be the same. as an example }
          "aws:userId": [
        "StringNotLike": {
      "Condition": {
      "Resource": [
      "Action": "s3:*",
      "Principal": "*",
      "Effect": "Deny",
  "Statement": [
  "Version": "2012-10-17",
diane.lakestani 2018-02-15 16:06:26 this is for a user, i have to figure out for a role
patrickdayton 2018-02-15 16:06:45 as an example You're going to have to set your permissions yourself. I'm trying to show you how you can restrict access to specific buckets in the above Role.
diane.lakestani 2018-02-15 16:07:49 ok thank you :slightly_smiling_face:
patrickdayton 2018-02-15 16:07:55 :+1: The other thing that is nice about I am is how you can create a variety of Policies and assign different ones to Roles. Essentially, a list/collection of permissions. DM me if you need any additional help. I'll see what i can do
diane.lakestani 2018-02-15 16:09:53 ok thank you very much i will try, i will ask you if i need help
patrickdayton 2018-02-15 19:05:13 Anyone have any tips for resolving circular dependencies between resources in a CloudFormation template?
crielly 2018-02-15 19:06:12 don't make circular dependencies, basically. They break the DAG model upon which CloudFormation (and Terraform) are based
tbowyer 2018-02-15 19:06:17 might help
patrickdayton 2018-02-15 19:10:03 I have quite a few "Fn::Join" bits in my template, but the fact that CloudFormation doesn't give very verbose error output has been throwing me off all day
ralph 2018-02-15 19:13:13 Use the DependsOn feature. Generally it's one of the resources doing the damage.

