aws_media_store_container_policy

Provides a MediaStore Container Policy.

Example Usage

data "aws_region" "current" {}

data "aws_caller_identity" "current" {}

resource "aws_media_store_container" "example" {
  name = "example"
}

resource "aws_media_store_container_policy" "example" {
  container_name = "${aws_media_store_container.example.name}"
  policy = <<EOF
{
    "Version": "2012-10-17",
    "Statement": [{
        "Sid": "MediaStoreFullAccess",
        "Action": [ "mediastore:*" ],
        "Principal": {"AWS" : "arn:aws:iam::${data.aws_caller_identity.current.account_id}:root"},
        "Effect": "Allow",
        "Resource": "arn:aws:mediastore:${data.aws_caller_identity.current.account_id}:${data.aws_region.current.name}:container/${aws_media_store_container.example.name}/*",
        "Condition": {
            "Bool": { "aws:SecureTransport": "true" }
        }
    }]
}
EOF
}

Argument Reference

The following arguments are supported:

  • container_name - (Required) The name of the container.
  • policy - (Required) The contents of the policy.

Import

MediaStore Container Policy can be imported using the MediaStore Container Name, e.g.

$ terraform import aws_media_store_container_policy.example example

© 2018 HashiCorp
Licensed under the MPL 2.0 License.
https://www.terraform.io/docs/providers/aws/r/media_store_container_policy.html