From a30da1a10c2bac244457f60ea431c3a610f4d8c4 Mon Sep 17 00:00:00 2001
From: David Dollar <david@dollar.io>
Date: Wed, 30 Oct 2019 12:07:11 -0400
Subject: [PATCH] downcase thumbprint and add log permission

---
 terraform/api/aws/iam.tf     | 1 +
 terraform/cluster/aws/iam.tf | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/terraform/api/aws/iam.tf b/terraform/api/aws/iam.tf
index 7749c37..9f3b684 100644
--- a/terraform/api/aws/iam.tf
+++ b/terraform/api/aws/iam.tf
@@ -28,6 +28,7 @@ data "aws_iam_policy_document" "logs" {
     actions = [
       "logs:CreateLogGroup",
       "logs:CreateLogStream",
+      "logs:DescribeLogStreams",
       "logs:FilterLogEvents",
       "logs:PutLogEvents",
     ]
diff --git a/terraform/cluster/aws/iam.tf b/terraform/cluster/aws/iam.tf
index 0c71050..0cee53f 100644
--- a/terraform/cluster/aws/iam.tf
+++ b/terraform/cluster/aws/iam.tf
@@ -1,6 +1,6 @@
 resource "aws_iam_openid_connect_provider" "cluster" {
   client_id_list  = ["sts.amazonaws.com"]
-  thumbprint_list = ["9E99A48A9960B14926BB7F3B02E22DA2B0AB7280"]
+  thumbprint_list = ["9e99a48a9960b14926bb7f3b02e22da2b0ab7280"]
   url             = "${aws_eks_cluster.cluster.identity.0.oidc.0.issuer}"
 }