up stack delete attempts to delete roles it didn't create

[davidmc24]

Prerequisites

• I am running the latest version. (up upgrade)
• I searched to see if the issue already exists.
• I inspected the verbose debug output with the -v, --verbose flag.
• Are you an Up Pro subscriber?

Description

At the company I work at, we do not have the IAM permission to create/delete IAM roles/policies. I was expecting that if up.yml was configured with a value for lamba.role, it would use that role without attempting to modify it. This appears to work as expected for stack creation and deployment, but when doing a stack deletion, it appears to attempt to delete the default function role even though it wasn't using it.

While it's possible that my situation (not having permission to delete roles) is uncommon, this also has the possibility of deleting unrelated roles that happen to have the expected name and may be in use for other purposes.

Steps to Reproduce

• Create a service with a provided lambda role and an AWS profile that isn't allowed to delete roles.
• Deploy the service.
• Run up stack delete and see the error

Love Up?

Please consider signing up for Up Pro (https://up.docs.apex.sh/#guides.subscribing_to_up_pro) or donating via https://opencollective.com/apex-up/donate.

Slack

Join us on Slack https://chat.apex.sh/