Skip to content

Commit

Permalink
ci: Update Resource IMDSv1 Permissions (aws#4360)
Browse files Browse the repository at this point in the history
  • Loading branch information
@engedaam
engedaam authored Aug 1, 2023
1 parent 9f325c1 commit 952f991
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions test/cloudformation/iam_cloudformation.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -466,14 +466,14 @@ Resources:
- Effect: Deny
Action:
- ec2:RunInstances
Resource: "*"
Resource: !Sub "arn:${AWS::Partition}:ec2:*:${AWS::AccountId}:instance/*"
Condition:
StringNotEquals:
ec2:MetadataHttpTokens: required
- Effect: Deny
Action:
- ec2:ModifyInstanceMetadataOptions
Resource: "*"
Resource: !Sub "arn:${AWS::Partition}:ec2:*:${AWS::AccountId}:instance/*"
Condition:
StringEquals:
ec2:Attribute: HttpTokens
Expand Down

0 comments on commit 952f991

Please sign in to comment.