Skip to content

Commit

Permalink
Merge pull request #213 from tremble/wafv2/tagging
Browse files Browse the repository at this point in the history 
Add WAFv2 tagging permissions
  • Loading branch information
@gravesm
gravesm authored Jun 3, 2022
2 parents e7a7f45 + bd424fc commit fa953b7
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion aws/policy/application-security.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,6 @@ Statement:
- wafv2:DeleteFirewallManagerRuleGroups
- wafv2:DisassociateFirewallManager
- wafv2:UpdateIPSet
- wafv2:TagResource
Resource:
- 'arn:aws:wafv2:{{ aws_region }}:{{ aws_account_id }}:*'

Expand Down Expand Up @@ -110,6 +109,9 @@ Statement:
- waf:UpdateSqlInjectionMatchSet
- waf:UpdateWebACL
- waf:UpdateXssMatchSet
- wafv2:ListTagsForResource
- wafv2:TagResource
- wafv2:UntagResource
Resource: "*"
Condition:
StringEquals:
Expand Down

0 comments on commit fa953b7

Please sign in to comment.