Skip to content

Commit

Permalink
PLFM-8336: Allows snowflake access to file handle association data (#…
Browse files Browse the repository at this point in the history
  • Loading branch information
marcomarasca authored Apr 5, 2024
1 parent 4d9f968 commit 9c32d4f
Showing 1 changed file with 17 additions and 1 deletion.
18 changes: 17 additions & 1 deletion sceptre/synapseprod/templates/snowflake-access.yaml
Original file line number Diff line number Diff line change
@@ -21,7 +21,10 @@ Resources:
"s3:GetObject",
"s3:GetObjectVersion"
],
"Resource": "arn:aws:s3:::prod.datawarehouse.sagebase.org/warehouse/*"
"Resource": [
"arn:aws:s3:::prod.datawarehouse.sagebase.org/warehouse/*",
"arn:aws:s3:::prod.filehandles.sagebase.org/fileHandleAssociations/records/*"
]
},
{
"Effect": "Allow",
@@ -35,6 +38,19 @@ Resources:
"s3:prefix": [ "warehouse/*" ]
}
}
},
{
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:GetBucketLocation"
],
"Resource": "arn:aws:s3:::prod.filehandles.sagebase.org",
"Condition": {
"StringLike": {
"s3:prefix": [ "fileHandleAssociations/records/*" ]
}
}
}
]
}

0 comments on commit 9c32d4f

Please sign in to comment.