From a19acfa130514fa19b9b730ca9df3320e483d5bf Mon Sep 17 00:00:00 2001 From: badra001 Date: Tue, 2 Jan 2024 14:40:00 -0500 Subject: [PATCH] fix --- s3-config-org/main.tf | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/s3-config-org/main.tf b/s3-config-org/main.tf index f9d75ae..ea14398 100644 --- a/s3-config-org/main.tf +++ b/s3-config-org/main.tf @@ -27,7 +27,7 @@ locals { account_environment = data.aws_arn.current.partition == "aws-us-gov" ? "gov" : "ew" organization_id = data.aws_organizations_organization.org.id - bucket_name = var.bucket_name != "" ? var.bucket_name : format("%v-%v-%v", var.bucket_name_prefix, local.account_id, local.region) + bucket_name = var.bucket_name != null ? var.bucket_name : format("%v-%v-%v", var.bucket_name_prefix, local.account_id, local.region) key_name = compact([var.key_name, var.bucket_name, var.bucket_name_prefix])[0] base_tags = { @@ -109,6 +109,10 @@ data "aws_iam_policy_document" "bucket_policy" { aws_s3_bucket.config_org.arn, format("%v/*", aws_s3_bucket.config_org.arn), ] + principals { + type = "Service" + identifiers = ["config.amazonaws.com"] + } condition { test = "StringEquals" variable = "aws:PrincipalOrgId"