Reduce IAM policy to a more compact version

`Sid` is optional and can be omitted for brevity. Both `route53:ListHostedZones` and `route53:GetChange` are allowed for `*`, so they can be combined into a single statement. Actions can be combined onto the same line, since it's equivalent JSON.
2016-02-06 19:00:10 -06:00 · 2016-02-06 19:00:10 -06:00 · fa8214b5b8
commit fa8214b5b8
parent 1198444908
1 changed files with 8 additions and 24 deletions
--- a/README.md
+++ b/README.md
@ -140,34 +140,18 @@ Replace `<INSERT_YOUR_HOSTED_ZONE_ID_HERE>` with the Route 53 zone ID of the dom
    "Version": "2012-10-17",
    "Statement": [
        {
-            "Sid": "1",
            "Effect": "Allow",
-            "Action": [
-                "route53:ChangeResourceRecordSets"
-            ],
-            "Resource": [
-                "arn:aws:route53:::hostedzone/<INSERT_YOUR_HOSTED_ZONE_ID_HERE>"
-            ]
-        },
-        {
-            "Sid": "2",
-            "Effect": "Allow",
-            "Action": [
-                "route53:GetChange"
-            ],
-            "Resource": [
-                "arn:aws:route53:::change/*"
-            ]
-        },
-        {
-            "Sid": "3",
-            "Effect": "Allow",
-            "Action": [
-                "route53:ListHostedZones"
-            ],
+            "Action": [ "route53:ListHostedZones", "route53:GetChange" ],
            "Resource": [
                "*"
            ]
+        },
+        {
+            "Effect": "Allow",
+            "Action": ["route53:ChangeResourceRecordSets"],
+            "Resource": [
+                "arn:aws:route53:::hostedzone/<INSERT_YOUR_HOSTED_ZONE_ID_HERE>"
+            ]
        }
    ]
 }