fix: permission dispatcher for workflow job queueu

npalm · npalm · commit 732292e81579 · 2024-10-31T13:12:22.000+01:00
diff --git a/examples/default/main.tf b/examples/default/main.tf
@@ -26,6 +26,11 @@ module "runners" {
     Project = "ProjectX"
   }
 
+  eventbridge = {
+    enable = true
+  }
+  enable_workflow_job_events_queue = true
+
   github_app = {
     key_base64     = var.github_app.key_base64
     id             = var.github_app.id
diff --git a/modules/webhook/eventbridge/dispatcher.tf b/modules/webhook/eventbridge/dispatcher.tf
@@ -144,10 +144,10 @@ resource "aws_iam_role_policy" "dispatcher_xray" {
   role   = aws_iam_role.dispatcher_lambda.name
 }
 
-resource "aws_iam_role_policy" "webhook_workflow_job_sqs" {
+resource "aws_iam_role_policy" "dispatcher_workflow_job_sqs" {
   count = var.config.sqs_workflow_job_queue != null ? 1 : 0
   name  = "publish-workflow-job-sqs-policy"
-  role  = aws_iam_role.webhook_lambda.name
+  role  = aws_iam_role.dispatcher_lambda.name
 
   policy = templatefile("${path.module}/../policies/lambda-publish-sqs-policy.json", {
     sqs_resource_arns = jsonencode([var.config.sqs_workflow_job_queue.arn])
