typescriptamazon-web-servicesamazon-iamaws-cdk
Adding managed policy aws with cdk
I am trying to add a managed policy to a role that contains an account id:
const role = iam.Role.fromRoleArn(
this,
'Role',
`arn:aws:iam::${cdk.Stack.of(this).account}:role/example-role`,
);
role.addManagedPolicy(iam.ManagedPolicy.fromAwsManagedPolicyName('AmazonDynamoDBFullAccess'));
role.addManagedPolicy(iam.ManagedPolicy.fromAwsManagedPolicyName('AmazonKinesisFullAccess'));
on the aws console i can't see the policy being added to the role.
fyi My aws-cli is logged with the right account.
Solution
Unfortunately, CDK cannot modify external resources. So the changes will go through, but will have no effect.
The proper way is to create the role with CDK and add the policy in the same place where you're creating the role.
Here's a relevant excerpt from the documentation:
Although you can use an external resource anywhere you'd use a similar resource defined in your AWS CDK app, you cannot modify it. For example, calling addToResourcePolicy (Python: add_to_resource_policy) on an external s3.Bucket does nothing.
- Can I infer a tuple type from a function's return type, without using 'as const'?
- React with Typescript -- Generics while using React.forwardRef
- Writing npm modules in TypeScript
- How do I count number of words in a string in Typescript without counting extraneous spaces?
- Cannot find module 'ts-transformer-keys'. Did you mean to set the 'moduleResolution' option to 'node', or to add aliases to the 'paths' option?
- javascrip indexOf not working with underscore=
- Using Angular's @switch() that shares a template for several @case?
- Guard flickers page then loads actual page
- Catch error thrown from http.get() thats piped
- Socket room event not received in React component
- React native victory chart gives error value undefined
- How can i use angular-calendar in Angular 17?
- Typescript no overload matches this call
- Parsing error: Cannot read file '.../tsconfig.json'.eslint
- Giving a type to polymorphic static methods used as public constructors
- Strange behavior using Angular elements with application builder v19
- How to handle client card/pfx authentication certificate popup in Playwright
- How to transform a flat object to a nested object?
- tsc: The term 'tsc' is not recognized as a name of a cmdlet, function, script file, or executable program for configuring TypeScript Program
- Declare a type that is a union of the types of the properties of an interface
- How to remove mysterious "default" field added to JSON?
- @ngrx/signals Store methods in separate file
- TypeError: Cannot read properties of undefined (reading 'call') on Next.js
- How to target text 'Détails' span within mapped button components in React?
- Upgraded angular versions and now getting error: "The AppComponent component is not marked as standalone"
- how we implement dto validation in nestjs TCP microservice
- Text input not persisting in form using Playwright
- Angular Unit Test TypeError: this._renderer.addClass is not a function
- Is it possible to ignore class-validator on the client side?
- Loading higher-order component