keep flow with lambda msg

DNXLabs · Aug 21, 2024 · 34da9be · 34da9be
1 parent 73931b4
commit 34da9be
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 9 deletions.
diff --git a/aws-event_bridge.tf b/aws-event_bridge.tf
@@ -25,6 +25,6 @@ resource "aws_cloudwatch_event_rule" "alarm_notification" {
 resource "aws_cloudwatch_event_target" "lambda_target" {
   count     = length(var.endpoints) > 0 ? 1 : 0
   rule      = aws_cloudwatch_event_rule.alarm_notification[0].name
-  target_id = "cloudtrail_alarm_notifications"
-  arn       = var.alarm_protocol == "email" ? aws_lambda_function.lambda[0].arn : aws_sns_topic.alarms[0].arn
+  target_id = "lambda_notification"
+  arn       = aws_lambda_function.lambda[0].arn
 }
diff --git a/aws-iam.tf b/aws-iam.tf
@@ -1,5 +1,5 @@
 data "aws_iam_policy_document" "lambda_assume_role" {
-  count = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count = length(var.endpoints) > 0 ? 1 : 0
   statement {
     actions = ["sts:AssumeRole"]
     principals {
@@ -10,14 +10,14 @@ data "aws_iam_policy_document" "lambda_assume_role" {
 }
 
 resource "aws_iam_role" "iam_for_lambda" {
-  count              = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count              = length(var.endpoints) > 0 ? 1 : 0
   name               = "cloudtrail-cn-role-${data.aws_region.current.name}"
   assume_role_policy = data.aws_iam_policy_document.lambda_assume_role[0].json
   tags               = var.tags
 }
 
 resource "aws_iam_policy" "lambda_cw" {
-  count       = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count       = length(var.endpoints) > 0 ? 1 : 0
   name        = "cloudtrail-cn-policy-${data.aws_region.current.name}"
   path        = "/"
   description = "IAM policy for logging from a lambda"
@@ -53,7 +53,7 @@ resource "aws_iam_policy" "lambda_cw" {
 }
 
 resource "aws_iam_role_policy_attachment" "lambda_cw" {
-  count      = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count      = length(var.endpoints) > 0 ? 1 : 0
   role       = aws_iam_role.iam_for_lambda[0].name
   policy_arn = aws_iam_policy.lambda_cw[0].arn
 }
diff --git a/aws-lambda.tf b/aws-lambda.tf
@@ -1,5 +1,5 @@
 resource "aws_lambda_function" "lambda" {
-  count            = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count            = length(var.endpoints) > 0 ? 1 : 0
   filename         = "${path.module}/lambda.zip"
   function_name    = var.lambda_name
   role             = aws_iam_role.iam_for_lambda[0].arn
@@ -21,7 +21,7 @@ resource "aws_lambda_function" "lambda" {
 }
 
 resource "aws_lambda_permission" "default" {
-  count         = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count         = length(var.endpoints) > 0 ? 1 : 0
   statement_id  = "AllowExecutionFromEventBridge"
   action        = "lambda:InvokeFunction"
   function_name = aws_lambda_function.lambda[0].function_name
@@ -30,7 +30,7 @@ resource "aws_lambda_permission" "default" {
 }
 
 resource "aws_cloudwatch_log_group" "alarm_lambda" {
-  count             = var.alarm_protocol == "email" && length(var.endpoints) > 0 ? 1 : 0
+  count             = length(var.endpoints) > 0 ? 1 : 0
   name              = "/aws/lambda/${var.lambda_name}"
   retention_in_days = 365
   kms_key_id        = var.kms_key