Remove S3 from base stack, must be managed externally to game-ci

2021-12-23 01:15:30 +00:00 · 2021-12-23 01:15:30 +00:00 · 8e4e4754bb
parent 099834f484
commit 8e4e4754bb
3 changed files with 2 additions and 31 deletions
--- a/dist/cloud-formations/base-setup.yml
+++ b/dist/cloud-formations/base-setup.yml
@ -7,10 +7,6 @@ Parameters:
    Type: String
    Default: development
    Description: "Your deployment environment: DEV, QA , PROD"
-  Storage:
-    Type: String
-    Default: game-ci-storage
-    Description: "Your s3 storage bucket"
  Version:
    Type: String
    Description: "hash of template"
@ -238,10 +234,6 @@ Resources:
            Statement:
            - Effect: Allow
              Action:
-                # Allow upload to S3
-                - 's3:GetObject'
-                - 's3:GetObjectVersion'
-                - 's3:PutObject'

                # Allow the use of secret manager
                - 'secretsmanager:GetSecretValue'
@ -355,12 +347,6 @@ Resources:
      SecurityGroups:
      - !Ref EFSServerSecurityGroup

-  S3Bucket:
-    Type: 'AWS::S3::Bucket'
-    DeletionPolicy: Retain
-    Properties:
-      BucketName: !Ref Storage
-



--- a/dist/cloud-formations/task-def-formation.yml
+++ b/dist/cloud-formations/task-def-formation.yml
@ -47,7 +47,7 @@ Parameters:
    Default: ''
    Description: >-
      (Optional) An IAM role to give the service's containers if the code within
-      needs to access other AWS resources like S3 buckets, DynamoDB tables, etc
+      needs to access other AWS resources
  EFSMountDirectory:
    Type: String
    Default: '/efsdata'
--- a/src/model/cloud-runner/aws/cloud-formations/base-setup.yml
+++ b/src/model/cloud-runner/aws/cloud-formations/base-setup.yml
@ -7,10 +7,6 @@ Parameters:
    Type: String
    Default: development
    Description: 'Your deployment environment: DEV, QA , PROD'
-  Storage:
-    Type: String
-    Default: game-ci-storage
-    Description: 'Your s3 storage bucket'
  Version:
    Type: String
    Description: 'hash of template'
@ -225,11 +221,6 @@ Resources:
            Statement:
              - Effect: Allow
                Action:
-                  # Allow upload to S3
-                  - 's3:GetObject'
-                  - 's3:GetObjectVersion'
-                  - 's3:PutObject'
-
                  # Allow the use of secret manager
                  - 'secretsmanager:GetSecretValue'
                  - 'kms:Decrypt'
@ -340,12 +331,6 @@ Resources:
      SecurityGroups:
        - !Ref EFSServerSecurityGroup

-  S3Bucket:
-    Type: 'AWS::S3::Bucket'
-    DeletionPolicy: Retain
-    Properties:
-      BucketName: !Ref Storage
-
 Outputs:
  EfsFileStorageId:
    Description: 'The connection endpoint for the database.'