constructor()

in lib/iam/lambda_role.ts [27:56]

• 25 lines of code
• 1 McCabe index (conditional complexity)

  constructor(scope: Construct, name: string, props:role_details) {
    const { accountNumber, ...rest } = props
    super(scope, name, {
      ...rest,
      assumedBy: new iam.ServicePrincipal('lambda.amazonaws.com'),
    })
    this.addManagedPolicy(iam.ManagedPolicy.fromManagedPolicyArn(this, 'id',"arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"))
    this.addToPolicy(
      new iam.PolicyStatement({
        effect: iam.Effect.ALLOW,
        actions: [
          's3:PutObject',
          's3:ListBucket',
          's3:GetObject',
          's3:GetObjectVersion',
          's3:GetBucketVersioning'
        ],
        resources: ["arn:aws:s3:::sc-bucket-"+props.accountNumber,
                   "arn:aws:s3:::sc-bucket-"+props.accountNumber+"/*",
                  "arn:aws:s3:::sc-service-catalog-bucket-"+props.accountNumber,
                  "arn:aws:s3:::sc-service-catalog-bucket-"+props.accountNumber+"/*"
                ]
      })
    )

    


    
  }