move policies to a common folder

sannya-singal · May 28, 2024 · f302728 · f302728
1 parent 8feb7dd
commit f302728
Show file tree

Hide file tree

Showing 10 changed files with 12 additions and 13 deletions.
diff --git a/README.md b/README.md
@@ -49,14 +49,14 @@ Create the SQS queue in Account A and set the policy to allow Account C to send
 
 ```bash
 QUEUE_URL=$(awslocal sqs create-queue --queue-name $QUEUE_NAME --attributes VisibilityTimeout=300 --query 'QueueUrl' --output text)
-awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://sqs-policy1.json
+awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://policy/sqs-policy1.json
 ```
 
 Create the S3 bucket in Account A and set the policy to allow Account C to upload files to the bucket in Account A:
 
 ```bash
 awslocal s3api create-bucket --bucket $BUCKET_NAME
-awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://s3-policy1.json
+awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://policy/s3-policy1.json
 ```
 
 ## Create the SQS queue and S3 bucket in Account B
@@ -81,14 +81,14 @@ Create the SQS queue in Account B and set the policy to allow Account C to send
 
 ```bash
 QUEUE_URL=$(awslocal sqs create-queue --queue-name $QUEUE_NAME --region eu-west-1 --attributes VisibilityTimeout=300 --query 'QueueUrl' --output text)
-awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://sqs-policy2.json
+awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://policy/sqs-policy2.json
 ```
 
 Create the S3 bucket in Account B and set the policy to allow Account C to upload files to the bucket in Account B:
 
 ```bash
 awslocal s3api create-bucket --bucket $BUCKET_NAME
-awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://s3-policy2.json
+awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://policy/s3-policy2.json
 ```
 
 ## Create the Lambda function and API Gateway in Account C
@@ -103,8 +103,8 @@ export AWS_SECRET_ACCESS_KEY=test
 Create lambda execution role and attach it to the policy:
 
 ```bash
-awslocal iam create-role --role-name common-lambda-role --assume-role-policy-document file://trust-policy.json
-awslocal iam put-role-policy --role-name common-lambda-role --policy-name common-lambda-policy --policy-document file://lambda-policy.json
+awslocal iam create-role --role-name common-lambda-role --assume-role-policy-document file://policy/trust-policy.json
+awslocal iam put-role-policy --role-name common-lambda-role --policy-name common-lambda-policy --policy-document file://policy/lambda-policy.json
 ```
 
 Create the deployment package for the Lambda function and create the function:

diff --git a/accountA.sh b/accountA.sh
@@ -14,13 +14,13 @@ QUEUE_URL=$(awslocal sqs create-queue --queue-name $QUEUE_NAME --attributes Visi
 echo "Queue created URL: $QUEUE_URL"
 
 echo "> Setting Queue Policy for $QUEUE_URL..."
-awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://sqs-policy1.json
+awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://policy/sqs-policy1.json
 
 echo "> Creating Bucket: $BUCKET_NAME..."
 awslocal s3api create-bucket --bucket $BUCKET_NAME
 echo "Bucket created: $BUCKET_NAME"
 
 echo "> Setting Bucket Policy for $BUCKET_NAME..."
-awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://s3-policy1.json
+awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://policy/s3-policy1.json
 
 echo "Setup completed for Account ID: $ACCOUNT_ID"
diff --git a/accountB.sh b/accountB.sh
@@ -14,12 +14,12 @@ echo "> Creating Queue: $QUEUE_NAME..."
 QUEUE_URL=$(awslocal sqs create-queue --queue-name $QUEUE_NAME --region eu-west-1 --attributes VisibilityTimeout=300 --query 'QueueUrl' --output text)
 echo "Queue created URL: $QUEUE_URL"
 echo "> Setting Queue Policy for $QUEUE_URL..."
-awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://sqs-policy2.json
+awslocal sqs set-queue-attributes --queue-url $QUEUE_URL --attributes file://policy/sqs-policy2.json
 
 echo "> Creating Bucket: $BUCKET_NAME..."
 awslocal s3api create-bucket --bucket $BUCKET_NAME
 echo "Bucket created: $BUCKET_NAME"
 echo "> Setting Bucket Policy for $BUCKET_NAME..."
-awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://s3-policy2.json
+awslocal s3api put-bucket-policy --bucket $BUCKET_NAME --policy file://policy/s3-policy2.json
 
 echo "Setup completed for Account ID: $ACCOUNT_ID"
diff --git a/accountC.sh b/accountC.sh
@@ -1,8 +1,8 @@
 export AWS_ACCESS_KEY_ID=333333333333
 export AWS_SECRET_ACCESS_KEY=test
 
-awslocal iam create-role --role-name common-lambda-role --assume-role-policy-document file://trust-policy.json
-awslocal iam put-role-policy --role-name common-lambda-role --policy-name common-lambda-policy --policy-document file://lambda-policy.json
+awslocal iam create-role --role-name common-lambda-role --assume-role-policy-document file://policy/trust-policy.json
+awslocal iam put-role-policy --role-name common-lambda-role --policy-name common-lambda-policy --policy-document file://policy/lambda-policy.json
 
 zip lambda_function.zip lambda_function.py
 
@@ -34,4 +34,3 @@ awslocal lambda add-permission \
                 --principal apigateway.amazonaws.com \
                 --source-arn "arn:aws:execute-api:us-east-1:333333333333:$API_ID/*/*/*" \
                 --source-account 333333333333
-
diff --git a/lambda-policy.json → policy/lambda-policy.json b/lambda-policy.json → policy/lambda-policy.json
diff --git a/s3-policy1.json → policy/s3-policy1.json b/s3-policy1.json → policy/s3-policy1.json
diff --git a/s3-policy2.json → policy/s3-policy2.json b/s3-policy2.json → policy/s3-policy2.json
diff --git a/sqs-policy1.json → policy/sqs-policy1.json b/sqs-policy1.json → policy/sqs-policy1.json
diff --git a/sqs-policy2.json → policy/sqs-policy2.json b/sqs-policy2.json → policy/sqs-policy2.json
diff --git a/trust-policy.json → policy/trust-policy.json b/trust-policy.json → policy/trust-policy.json