commit a4e6f593ce54a100f6c36843f2db8e7e6cef2c67
author Riku Voipio <riku.voipio@linaro.org> Tue Oct 06 17:49:49 2020 +0300
committer Riku Voipio <riku.voipio@linaro.org> Tue Oct 06 17:51:15 2020 +0300
tree 885b3eaf5cb0977b11167e4a9a50e111ab94f29e
parent 688f1cdf603d0a77faacec57afa118bbf0a537e3

terraform: closer match to reality

Signed-off-by: Riku Voipio <riku.voipio@linaro.org>
Change-Id: I75e2d28a6faf53d5024ef7c963e659fda1ad5cb5

ecr.tf

diff --git a/ecr.tf b/ecr.tf
index 2141b04..ef959cf 100644
--- a/ecr.tf
+++ b/ecr.tf
@@ -38,14 +38,15 @@
             "Effect": "Allow",
             "Resource": "*",
             "Action": [
-                "ecr:GetDownloadUrlForLayer",
                 "ecr:BatchGetImage",
                 "ecr:BatchCheckLayerAvailability",
+                "ecr:CompleteLayerUpload",
                 "ecr:GetAuthorizationToken",
-                "ecr:PutImage",
+                "ecr:GetDownloadUrlForLayer",
                 "ecr:InitiateLayerUpload",
-                "ecr:UploadLayerPart",
-                "ecr:CompleteLayerUpload"
+                "ecr:ListImages",
+                "ecr:PutImage",
+                "ecr:UploadLayerPart"
             ]
         }
     ]

infra.tf

diff --git a/infra.tf b/infra.tf
index b142def..da19792 100644
--- a/infra.tf
+++ b/infra.tf
@@ -37,7 +37,7 @@
 
 #servers
 resource "aws_instance" "staging-ci" {
-    ami           = "ami-0286372f78291e588"
+    ami           = "ami-0ac80df6eff0e70b5"
     instance_type = "t3.large"
     # hardcoding for the time being.  In the future we may want
     # to split staging off to its own subnet.