Add s3:GetObject permission for CAPA

AndiDog · AndiDog · commit 222b2f61babd · 2023-12-08T17:57:40.000+01:00
For upcoming feature kubernetes-sigs/cluster-api-provider-aws#4667
diff --git a/capa-controller-role/capa-controller-policy.json b/capa-controller-role/capa-controller-policy.json
@@ -17,9 +17,9 @@
                 "ec2:CreateSubnet",
                 "ec2:CreateTags",
                 "ec2:CreateVpc",
-		"ec2:CreateVpcEndpoint",
+                "ec2:CreateVpcEndpoint",
                 "ec2:ModifyVpcAttribute",
-		"ec2:ModifyVpcEndpoint",
+                "ec2:ModifyVpcEndpoint",
                 "ec2:DeleteInternetGateway",
                 "ec2:DeleteNatGateway",
                 "ec2:DeleteNetworkInterface",
@@ -28,7 +28,7 @@
                 "ec2:DeleteSubnet",
                 "ec2:DeleteTags",
                 "ec2:DeleteVpc",
-		"ec2:DeleteVpcEndpoints",
+                "ec2:DeleteVpcEndpoints",
                 "ec2:DetachNetworkInterface",
                 "ec2:DescribeAccountAttributes",
                 "ec2:DescribeAddresses",
@@ -46,35 +46,36 @@
                 "ec2:DescribeSubnets",
                 "ec2:DescribeVpcs",
                 "ec2:DescribeVpcAttribute",
-		"ec2:DescribeVpcEndpoints",
+                "ec2:DescribeVpcEndpoints",
                 "ec2:DescribeVolumes",
                 "ec2:DetachInternetGateway",
                 "ec2:DisassociateRouteTable",
                 "ec2:DisassociateAddress",
-		"ec2:DisassociateVpcCidrBlock",
+                "ec2:DisassociateVpcCidrBlock",
                 "ec2:ModifyInstanceAttribute",
                 "ec2:ModifyNetworkInterfaceAttribute",
                 "ec2:ModifySubnetAttribute",
                 "ec2:ReleaseAddress",
                 "ec2:RevokeSecurityGroupIngress",
-	        "ec2:RevokeSecurityGroupEgress",
+                "ec2:RevokeSecurityGroupEgress",
                 "ec2:RunInstances",
                 "ec2:TerminateInstances",
                 "tag:GetResources",
                 "elasticloadbalancing:*",
                 "autoscaling:DescribeAutoScalingGroups",
                 "autoscaling:DescribeInstanceRefreshes",
-	        "autoscaling:SuspendProcesses",
-	        "autoscaling:DescribeAutoScalingInstances",
-	        "autoscaling:TerminateInstanceInAutoScalingGroup",
+                "autoscaling:SuspendProcesses",
+                "autoscaling:DescribeAutoScalingInstances",
+                "autoscaling:TerminateInstanceInAutoScalingGroup",
                 "ec2:CreateLaunchTemplate",
                 "ec2:CreateLaunchTemplateVersion",
                 "ec2:DescribeLaunchTemplates",
                 "ec2:DescribeLaunchTemplateVersions",
                 "ec2:DeleteLaunchTemplate",
                 "ec2:DeleteLaunchTemplateVersions",
-		"s3:CreateBucket",
+                "s3:CreateBucket",
                 "s3:DeleteBucket",
+                "s3:GetObject",
                 "s3:PutObject",
                 "s3:DeleteObject",
                 "s3:PutBucketPolicy",
