From d8360c4deb04c95636f692571c1232a45d87a240 Mon Sep 17 00:00:00 2001 From: Kuntal Basu Date: Fri, 21 Feb 2025 17:28:38 -0500 Subject: [PATCH] fix:reducing lambda permission policy length --- logs_monitoring_cloudwatch_log.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/logs_monitoring_cloudwatch_log.tf b/logs_monitoring_cloudwatch_log.tf index 8a9d73a..6d2a9a6 100644 --- a/logs_monitoring_cloudwatch_log.tf +++ b/logs_monitoring_cloudwatch_log.tf @@ -9,7 +9,7 @@ resource "aws_cloudwatch_log_subscription_filter" "test_lambdafunction_logfilter resource "aws_lambda_permission" "allow_cloudwatch_logs_to_call_dd_lambda_handler" { for_each = { for lg in local.log_groups_to_use : lg => lg } - statement_id = "${substr(replace(each.value, "/", "_"), 0, 67)}-AllowExecutionFromCloudWatchLogs" + statement_id = "${substr(replace(replace(each.value, "/aws/lambda", ""), "/", "_"), 0, 67)}-CW" action = "lambda:InvokeFunction" function_name = aws_cloudformation_stack.datadog-forwarder.outputs.DatadogForwarderArn principal = "logs.${var.aws_region}.amazonaws.com"