From e6dab07dae677e82d179dfc9e2322bded14be9c0 Mon Sep 17 00:00:00 2001
From: YuviPanda <yuvipanda@gmail.com>
Date: Thu, 22 Aug 2024 10:14:13 +0530
Subject: [PATCH] nasa-veda: Change some hub-side permissions for the binder

These were not in effect (as the S3 bucket side has not
been opened), and we're toning these down now for an additional
level of security.
---
 terraform/aws/projects/nasa-veda.tfvars | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/terraform/aws/projects/nasa-veda.tfvars b/terraform/aws/projects/nasa-veda.tfvars
index 225254a80c..a2977a18c8 100644
--- a/terraform/aws/projects/nasa-veda.tfvars
+++ b/terraform/aws/projects/nasa-veda.tfvars
@@ -165,16 +165,10 @@ hub_cloud_permissions = {
             {
               "Effect": "Allow",
               "Action": [
-                "s3:PutObject",
                 "s3:GetObject",
-                "s3:ListBucketMultipartUploads",
-                "s3:AbortMultipartUpload",
                 "s3:ListBucketVersions",
-                "s3:CreateBucket",
                 "s3:ListBucket",
-                "s3:DeleteObject",
                 "s3:GetBucketLocation",
-                "s3:ListMultipartUploadParts"
               ],
               "Resource": [
                 "arn:aws:s3:::veda-data-store",