Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add to PipelineExecutionRolePermissions to allow stack deletion (#3213)
* Revert "release: 0.20.0" * chore: Update version to 0.20.1 * Revert "Revert "release: 0.20.0"" (#1377) This reverts commit 2090431. * Add to PipelineExecutionRolePermissions to allow stack deletion Why --- The `PipelineExecutionRole` is assumed by the `PipelineUser` when deploying CI/CD pipelines. This role doesn't have permission to delete stacks via `sam delete`. This means that any stacks created need to be deleted manually. In order to support automated stack deletions for feature branches, this role needs a few extra permissions. This change is needed to support the this PR in the sam pipeline templates: aws/aws-sam-cli-pipeline-init-templates#42 How --- - Add three additional IAM permissions which allow the `sam delete` command to work as expected in `PipelineExecutionRolePermissions`. Next Steps ---------- - After this is merged, [this PR in the Pipeline templates for GitHub Actions](aws/aws-sam-cli-pipeline-init-templates#42) can be merged. * Add BatchDeleteImage to PipelineExecutionRolePermissions Based on PR feedback, allow for this role to delete a list of ImageIds by adding `ecr:BatchDeleteImage` to the Pipeline role.
- Loading branch information