fix: shorten role name for ssm housekeeper (#3587)

# Problem Roles names can grow quite long for multi runners. this beacause the prefix. THe PR shorten the role name which is a quick fix.
philips-labs · Oct 31, 2023 · a1440b5 · a1440b5
1 parent d928d17
commit a1440b5
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/modules/runners/ssm-housekeeper.tf b/modules/runners/ssm-housekeeper.tf
@@ -79,23 +79,24 @@ resource "aws_lambda_permission" "ssm_housekeeper" {
 }
 
 resource "aws_iam_role" "ssm_housekeeper" {
-  name                 = "${var.prefix}-action-ssm-housekeeper-lambda-role"
+  name                 = "${var.prefix}-ssm-hk-lambda"
+  description          = "Lambda role for SSM Housekeeper (${var.prefix})"
   assume_role_policy   = data.aws_iam_policy_document.lambda_assume_role_policy.json
   path                 = local.role_path
   permissions_boundary = var.role_permissions_boundary
   tags                 = local.tags
 }
 
 resource "aws_iam_role_policy" "ssm_housekeeper" {
-  name = "${var.prefix}-ssm-housekeeper-policy"
+  name = "lambda-ssm"
   role = aws_iam_role.ssm_housekeeper.name
   policy = templatefile("${path.module}/policies/lambda-ssm-housekeeper.json", {
     ssm_token_path = "arn:${var.aws_partition}:ssm:${var.aws_region}:${data.aws_caller_identity.current.account_id}:parameter${local.token_path}"
   })
 }
 
 resource "aws_iam_role_policy" "ssm_housekeeper_logging" {
-  name = "${var.prefix}-lambda-logging"
+  name = "lambda-logging"
   role = aws_iam_role.ssm_housekeeper.name
   policy = templatefile("${path.module}/policies/lambda-cloudwatch.json", {
     log_group_arn = aws_cloudwatch_log_group.ssm_housekeeper.arn