From aefeb419d40c4998861f3fde371d7a5ebf9cbb99 Mon Sep 17 00:00:00 2001
From: Vivian Shao <nshao@chanzuckerberg.com>
Date: Thu, 31 Oct 2024 16:29:58 -0700
Subject: [PATCH] fix: update s3 bucket name typo

---
 aws-iam-role-s3-readonly/README.md | 2 +-
 aws-iam-role-s3-readonly/main.tf   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/aws-iam-role-s3-readonly/README.md b/aws-iam-role-s3-readonly/README.md
index 534ec4e2..3b261014 100644
--- a/aws-iam-role-s3-readonly/README.md
+++ b/aws-iam-role-s3-readonly/README.md
@@ -37,7 +37,7 @@ No requirements.
 | <a name="input_owner"></a> [owner](#input\_owner) | Owner for tagging and naming. See [doc](../README.md#consistent-tagging) | `string` | n/a | yes |
 | <a name="input_project"></a> [project](#input\_project) | Project for tagging and naming. See [doc](../README.md#consistent-tagging) | `string` | n/a | yes |
 | <a name="input_role_name"></a> [role\_name](#input\_role\_name) | Name of the role to create | `string` | n/a | yes |
-| <a name="input_s3_bucket_prefixes"></a> [s3\_bucket\_prefixes](#input\_s3\_bucket\_prefixes) | Limits role permissions to buckets with specific prefixes. Empty for all buckets. | `list(any)` | <pre>[<br>  ""<br>]</pre> | no |
+| <a name="input_s3_bucket_names"></a> [s3\_bucket\_prefixes](#input\_s3\_bucket\_prefixes) | Limits role permissions to buckets with specific prefixes. Empty for all buckets. | `list(any)` | <pre>[<br>  ""<br>]</pre> | no |
 | <a name="input_saml_idp_arns"></a> [saml\_idp\_arns](#input\_saml\_idp\_arns) | The AWS SAML IDP arns to establish a trust relationship. Ignored if empty or not provided. | `set(string)` | `[]` | no |
 | <a name="input_service"></a> [service](#input\_service) | Service for tagging and naming. See [doc](../README.md#consistent-tagging) | `string` | n/a | yes |
 | <a name="input_source_account_ids"></a> [source\_account\_ids](#input\_source\_account\_ids) | The source AWS account IDs to establish a trust relationship. Ignored if empty or not provided. | `set(string)` | `[]` | no |
diff --git a/aws-iam-role-s3-readonly/main.tf b/aws-iam-role-s3-readonly/main.tf
index 900f586b..5922b3f9 100644
--- a/aws-iam-role-s3-readonly/main.tf
+++ b/aws-iam-role-s3-readonly/main.tf
@@ -52,7 +52,7 @@ data "aws_iam_policy_document" "s3-bucket-readonly" {
     actions = [
       "s3:ListAllMyBuckets"
     ]
-    resources = toset(formatlist("arn:aws:s3:::%s", var.s3_bucket_names), formatlist("arn:aws:s3:::%s/*", var.s3_bucket_prefixes))
+    resources = toset(formatlist("arn:aws:s3:::%s", var.s3_bucket_names), formatlist("arn:aws:s3:::%s/*", var.s3_bucket_names))
   }
 }