From 22d2fc92eab677dde8eff3a339a480507d9af04d Mon Sep 17 00:00:00 2001
From: lza_menace <lza_menace@protonmail.com>
Date: Thu, 25 Feb 2021 15:41:23 -0800
Subject: [PATCH] giving atlantis ample access to deploy

---
 atlantis.tf | 27 +--------------------------
 1 file changed, 1 insertion(+), 26 deletions(-)

diff --git a/atlantis.tf b/atlantis.tf
index c0dbb14..5b852ce 100644
--- a/atlantis.tf
+++ b/atlantis.tf
@@ -33,35 +33,10 @@ module "atlantis" {
 
   policies_arn = [
     "arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy",
-    aws_iam_policy.atlantis-allow-s3-write.arn
+    "arn:aws:iam::aws:policy/AdministratorAccess"
   ]
 }
 
-resource "aws_iam_policy" "atlantis-allow-s3-write" {
-  name = "atlantis-allow-s3-write"
-  policy = jsonencode({
-      Version = "2012-10-17"
-      Statement = [
-        {
-          Action   = ["s3:*"]
-          Effect   = "Allow"
-          Resource = [
-            "arn:aws:s3:::missionsa-atlantis-backend",
-            "arn:aws:s3:::missionsa-atlantis-backend/*",
-          ]
-        },
-        {
-          Action = [
-            "dynamodb:PutItem",
-            "dynamodb:GetItem"
-          ]
-          Effect = "Allow"
-          Resource = ["arn:aws:dynamodb:us-west-2:096194284558:table/missionsa-atlantis-backend"]
-        }
-      ]
-    })
-  }
-
 data "aws_ssm_parameter" "github_user" {
   name = "github_user"
 }