key policy

terraform-modules · Sep 22, 2020 · 094fbee · 094fbee
1 parent 10824aa
commit 094fbee
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/main.tf b/main.tf
@@ -13,7 +13,7 @@ locals {
     "boc:safeguard" = "title26"
   }
   account_id = data.aws_caller_identity.current.account_id
-  aws_region = data.aws_region.current.name
+  #aws_region = data.aws_region.current.name
   #partition  = data.aws_arn.current.partition
   #name       = (var.name != "" && var.name != null) ? var.name : format("k-kms-%v-%v", var.bucket_name, local.aws_region)
   name       = var.bucket_name
@@ -136,7 +136,7 @@ resource "aws_s3_bucket_object" "this_objects" {
 resource "aws_kms_key" "key" {
   description         = "KMS CMK for Cloudtrail and S3 bucket ${local.name}"
   enable_key_rotation = true
-  policy              = data.aws_iam_policy_document.key.json
+  #policy              = data.aws_iam_policy_document.key.json
 
   tags = merge(
     local.base_tags,