backups: update permissions CompleteMultiPartUpload permission doesn't exist, createbucket permission is needed. Change-Id: Id4cad64f4661b645a161129f17724defd0dd14bc

commit: 3655e9c504ab366a91de105ffb63e5caf3603517 [log] [tgz]
author: Riku Voipio <riku.voipio@linaro.org> Thu Feb 18 10:49:20 2021 +0200
committer: Riku Voipio <riku.voipio@linaro.org> Thu Feb 18 11:00:13 2021 +0200
tree: d68c2f514c7d67edc180d2a99cf51b6bfaae1bd2
parent: cc7f42f9690b793d50ba20e7467c0c7b19404903 [diff]
diff --git a/backups.tf b/backups.tf
index cec2e99..49bb6b3 100644
--- a/backups.tf
+++ b/backups.tf

@@ -10,7 +10,7 @@
   policy_file = "templates/role_policy.tmpl"
   actions = [
                 "s3:AbortMultipartUpload",
-                "s3:CompleteMultipartUpload",
+                "s3:CreateBucket",
                 "s3:ListBucket",
                 "s3:ListBucketMultipartUploads",
                 "s3:PutObject",
@@ -19,7 +19,8 @@
                 "s3:PutObjectAcl"
   ]
   resources = [
-                "arn:aws:s3:::trustedfirmware-backups-*/*"
+                "arn:aws:s3:::trustedfirmware-backups",
+                "arn:aws:s3:::trustedfirmware-backups/*"
   ]
 }
commit	3655e9c504ab366a91de105ffb63e5caf3603517	[log] [tgz]
author	Riku Voipio <riku.voipio@linaro.org>	Thu Feb 18 10:49:20 2021 +0200
committer	Riku Voipio <riku.voipio@linaro.org>	Thu Feb 18 11:00:13 2021 +0200
tree	d68c2f514c7d67edc180d2a99cf51b6bfaae1bd2
parent	cc7f42f9690b793d50ba20e7467c0c7b19404903 [diff]