From 8a4daa533560188cb06801266ac0e099760d19a2 Mon Sep 17 00:00:00 2001
From: mynampatinaveen <mynampatinaveen@users.noreply.github.com>
Date: Thu, 5 Sep 2024 16:17:22 +0100
Subject: [PATCH] CCL-509 updated aws_iam_role to use environment (#173)

* CCL-509 updated aws_iam_role to use environment

* CCL-509 updated aws_iam_role to use environment
---
 modules/products/static-site/iam.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/products/static-site/iam.tf b/modules/products/static-site/iam.tf
index 20c2737..aecd41f 100644
--- a/modules/products/static-site/iam.tf
+++ b/modules/products/static-site/iam.tf
@@ -18,7 +18,7 @@ resource "aws_iam_role" "static_site_actions_push" {
         }
         Condition = {
           StringLike = {
-            "token.actions.githubusercontent.com:sub" : "repo:${var.tenant_vars.repository}:ref:refs/heads/${var.tenant_vars.gitbranch}"
+            "token.actions.githubusercontent.com:sub" : "repo:${var.tenant_vars.repository}:environment:${var.tenant_vars.github_environment_name}"
             "sts:RoleSessionName" : "GitHubActions"
           }
           StringEquals = {