From 86d9d1f4e97b541b61684f711222133660d69313 Mon Sep 17 00:00:00 2001
From: Kilian <kilianc0709@gmail.com>
Date: Thu, 21 Mar 2024 23:44:17 +0100
Subject: [PATCH] fix: bucket notification not having permission to send
 messages to queue

---
 main.tf | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/main.tf b/main.tf
index 3a36898..72ab7cf 100644
--- a/main.tf
+++ b/main.tf
@@ -73,9 +73,10 @@ data "aws_iam_policy_document" "fanout" {
   statement {
     effect = "Allow"
 
+    # this can not be sns.amazonaws.com specific
     principals {
-      type        = "Service"
-      identifiers = ["sns.amazonaws.com"]
+      type        = "*"
+      identifiers = ["*"]
     }
 
     actions   = ["sqs:SendMessage"]
@@ -109,9 +110,10 @@ data "aws_iam_policy_document" "queue" {
   statement {
     effect = "Allow"
 
+    # this can not be sqs.amazonaws.com specific
     principals {
-      type        = "Service"
-      identifiers = ["sqs.amazonaws.com"]
+      type        = "*"
+      identifiers = ["*"]
     }
 
     actions = ["sqs:SendMessage"]