lambda-sqs-terraform: Fix deprecated managed_policy_arns argument

kakakakakku · kakakakakku · commit 9fe1a1925441 · 2025-08-04T08:24:20.000+09:00
diff --git a/lambda-sqs-terraform/main.tf b/lambda-sqs-terraform/main.tf
@@ -41,11 +41,7 @@ data "aws_iam_policy" "lambda_basic_execution_role_policy" {
 }
 
 resource "aws_iam_role" "lambda_iam_role" {
-  name_prefix         = "LambdaSQSRole-"
-  managed_policy_arns = [
-    data.aws_iam_policy.lambda_basic_execution_role_policy.arn,
-    aws_iam_policy.lambda_policy.arn
-  ]
+  name_prefix = "LambdaSQSRole-"
 
   assume_role_policy = <<EOF
 {
@@ -64,11 +60,21 @@ resource "aws_iam_role" "lambda_iam_role" {
 EOF
 }
 
+resource "aws_iam_role_policy_attachment" "lambda_basic_execution" {
+  role       = aws_iam_role.lambda_iam_role.name
+  policy_arn = data.aws_iam_policy.lambda_basic_execution_role_policy.arn
+}
+
+resource "aws_iam_role_policy_attachment" "lambda_sqs" {
+  role       = aws_iam_role.lambda_iam_role.name
+  policy_arn = aws_iam_policy.lambda_policy.arn
+}
+
 data "aws_iam_policy_document" "lambda_policy_document" {
   statement {
-  
+
     effect = "Allow"
-  
+
     actions = [
       "sqs:SendMessage*"
     ]
