private createGreengrassV2TokenExchangeRoleAccessPolicy()

in infra/stack/iot/thing-installer-stack.ts [196:215]

• 19 lines of code
• 1 McCabe index (conditional complexity)

    private createGreengrassV2TokenExchangeRoleAccessPolicy(): iam.PolicyStatement {
        const policy = iam.PolicyStatement.fromJson({
            "Effect": "Allow",
            "Action": [
                "iot:DescribeCertificate",
                "logs:CreateLogGroup",
                "logs:CreateLogStream",
                "logs:PutLogEvents",
                "logs:DescribeLogStreams",
                "iot:Connect",
                "iot:Publish",
                "iot:Subscribe",
                "iot:Receive",
                "s3:GetBucketLocation"
            ],
            "Resource": "*"
        });

        return policy;
    }