From dbb836c1c9c3148992f55f55a8f16fef86124443 Mon Sep 17 00:00:00 2001
From: mdugdale <mark.dugdale@bossastudios.com>
Date: Wed, 17 Feb 2021 23:58:31 +0000
Subject: [PATCH] cleanup

---
 action/base-setup.yml         |  6 +++---
 action/task-def-formation.yml | 10 ++++++++++
 2 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/action/base-setup.yml b/action/base-setup.yml
index 945a8089..8d553d0f 100644
--- a/action/base-setup.yml
+++ b/action/base-setup.yml
@@ -232,9 +232,9 @@ Resources:
             - Effect: Allow
               Action:
                 # Allow upload to S3
-                - s3:GetObject
-                - s3:GetObjectVersion
-                - s3:PutObject
+                - 's3:GetObject'
+                - 's3:GetObjectVersion'
+                - 's3:PutObject'
 
                 # Allow the use of secret manager
                 - 'secretsmanager:GetSecretValue'
diff --git a/action/task-def-formation.yml b/action/task-def-formation.yml
index fa944150..85959085 100644
--- a/action/task-def-formation.yml
+++ b/action/task-def-formation.yml
@@ -151,6 +151,16 @@ Resources:
     Properties: 
       Name: !Join [ "", [ 'AndroidKeyAliasPass', !Ref BUILDID ] ]
       SecretString: !Ref AndroidKeyAliasPass
+  AWSAccessKeyIDSecret:
+    Type: AWS::SecretsManager::Secret
+    Properties: 
+      Name: !Join [ "", [ 'AWSAccessKeyID', !Ref BUILDID ] ]
+      SecretString: !Ref AWSAccessKeyID
+  AWSSecretAccessKey:
+    Type: AWS::SecretsManager::Secret
+    Properties: 
+      Name: !Join [ "", [ 'AWSSecretAccessKey', !Ref BUILDID ] ]
+      SecretString: !Ref AWSSecretAccessKey
   
   TaskDefinition:
     Type: 'AWS::ECS::TaskDefinition'