From 3d12aaec7f470d9d3b32541568ce0b49f8755c1c Mon Sep 17 00:00:00 2001
From: badra001 <donald.e.badrak.ii@census.gov>
Date: Thu, 1 Apr 2021 16:37:07 -0400
Subject: [PATCH] remove key from policy

---
 ses-domain/README.md   |  1 -
 ses-domain/policies.tf | 30 +++++++++++++++---------------
 2 files changed, 15 insertions(+), 16 deletions(-)

diff --git a/ses-domain/README.md b/ses-domain/README.md
index 991afcf..c62c5d9 100644
--- a/ses-domain/README.md
+++ b/ses-domain/README.md
@@ -181,7 +181,6 @@ No modules.
 | [aws_arn.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/arn) | data source |
 | [aws_caller_identity.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity) | data source |
 | [aws_iam_policy_document.ses_event](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
-| [aws_kms_alias.sns](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/kms_alias) | data source |
 | [aws_region.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/region) | data source |
 | [external_external.ses_dns_txt](https://registry.terraform.io/providers/hashicorp/external/latest/docs/data-sources/external) | data source |
 
diff --git a/ses-domain/policies.tf b/ses-domain/policies.tf
index bc43991..4d9b3df 100644
--- a/ses-domain/policies.tf
+++ b/ses-domain/policies.tf
@@ -1,20 +1,20 @@
-data "aws_kms_alias" "sns" {
-  name = "alias/aws/sns"
-}
+#data "aws_kms_alias" "sns" {
+#  name = "alias/aws/sns"
+#}
 
 data "aws_iam_policy_document" "ses_event" {
-  statement {
-    effect = "Alow"
-    actions = [
-      "kms:GenerateDataKey*",
-      "kms:Decrypt",
-    ]
-    resources = [data.aws_kms_alias.sns.arn]
-    principals {
-      type        = "Service"
-      identifiers = ["ses.amazonaws.com"]
-    }
-  }
+  #   statement {
+  #     effect = "Alow"
+  #     actions = [
+  #       "kms:GenerateDataKey*",
+  #       "kms:Decrypt",
+  #     ]
+  #     resources = [data.aws_kms_alias.sns.arn]
+  #     principals {
+  #       type        = "Service"
+  #       identifiers = ["ses.amazonaws.com"]
+  #     }
+  #   }
   statement {
     effect    = "Alow"
     actions   = ["sns:Publish"]