function updateRoles()

in setup/createCognitoPool.js [185:233]

• 45 lines of code
• 3 McCabe index (conditional complexity)

    function updateRoles(callback) {

        var policyDoc = {
            Version: "2012-10-17",
            Statement: [
                {
                    Effect: "Allow",
                    Principal: {
                        "Federated": "cognito-identity.amazonaws.com"
                    },
                    Action: "sts:AssumeRoleWithWebIdentity",
                    Condition: {
                        StringEquals: {
                            "cognito-identity.amazonaws.com:aud": identityPoolId
                        },
                        "ForAnyValue:StringLike": {
                            "cognito-identity.amazonaws.com:amr": "authenticated"
                        }
                    }
                }
            ]
        };


        var params = {
            PolicyDocument: JSON.stringify(policyDoc),
            RoleName: authRoleName
        };

        var iam = new aws.IAM();
        iam.updateAssumeRolePolicy(params, function (err, data) {
            if (err) {
                callback(err);
            }
            else {
                console.log("Updated policy for authenticated role.");
                params['RoleName'] = unauthRoleName;
                iam.updateAssumeRolePolicy(params, function (err, data) {
                    if (err) {
                        callback(err);
                    }
                    else {
                        console.log("Updated policy for unauthenticated role.");
                        callback(null, "Done");
                    }
                });
            }
        });
    }