From e1ce16e3cdf00e461b24ca619002e2e6c065c09b Mon Sep 17 00:00:00 2001
From: Jun-te Kim <junte.kim@mealcraft.com>
Date: Mon, 9 Feb 2026 16:28:33 +0000
Subject: [PATCH] polciy

---
 .../modules/lambda_execution_role/main.tf        | 16 ----------------
 .../terraform/modules/lambda_sqs_trigger/main.tf | 15 ---------------
 2 files changed, 31 deletions(-)

diff --git a/infrastructure/terraform/modules/lambda_execution_role/main.tf b/infrastructure/terraform/modules/lambda_execution_role/main.tf
index af035ebb..e593b17c 100644
--- a/infrastructure/terraform/modules/lambda_execution_role/main.tf
+++ b/infrastructure/terraform/modules/lambda_execution_role/main.tf
@@ -19,19 +19,3 @@ resource "aws_iam_role_policy_attachment" "basic_logs" {
   policy_arn = "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
 }
 
-# resource "aws_iam_role_policy" "ecr_pull" {
-#   role = aws_iam_role.this.name
-
-#   policy = jsonencode({
-#     Version = "2012-10-17"
-#     Statement = [{
-#       Effect = "Allow"
-#       Action = [
-#         "ecr:GetAuthorizationToken",
-#         "ecr:BatchGetImage",
-#         "ecr:GetDownloadUrlForLayer"
-#       ]
-#       Resource = "*"
-#     }]
-#   })
-# }
diff --git a/infrastructure/terraform/modules/lambda_sqs_trigger/main.tf b/infrastructure/terraform/modules/lambda_sqs_trigger/main.tf
index 5919e10f..0cf9a353 100644
--- a/infrastructure/terraform/modules/lambda_sqs_trigger/main.tf
+++ b/infrastructure/terraform/modules/lambda_sqs_trigger/main.tf
@@ -5,19 +5,4 @@ resource "aws_lambda_event_source_mapping" "this" {
   enabled          = true
 }
 
-resource "aws_iam_role_policy" "allow_sqs" {
-  role = var.lambda_role_name
 
-  policy = jsonencode({
-    Version = "2012-10-17"
-    Statement = [{
-      Effect = "Allow"
-      Action = [
-        "sqs:ReceiveMessage",
-        "sqs:DeleteMessage",
-        "sqs:GetQueueAttributes"
-      ]
-      Resource = var.queue_arn
-    }]
-  })
-}