我正在使用terraform创建一个IAM角色,该角色仅允许lambda担任该角色。
resource "aws_iam_role" "default_lambda_role" {
name = "blahblahblah"
assume_role_policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
}
EOF
}
我遇到以下错误:
MalformedPolicyDocument: Actions/Conditions must be prefaced by a vendor, e.g., iam, sdb, ec2, etc.
该代码对于诸如config之类的资源运行良好...不确定为什么它不能与Lambda一起使用。我想念的东西简单吗?