IAM Role is given superuser permissions

It's currently: 

```
    "RolePolicies": {
      "Type": "AWS::IAM::Policy",
      "Properties": {
        "PolicyName": "elasticsearch",
        "PolicyDocument": {
          "Statement": [ {
            "Effect": "Allow",
            "Action": "*",
            "Resource": "*"
          } ]
        },
        "Roles": [ { "Ref": "ElasticsearchRole" } ]
      }
    },
```

this will give the elasticsearch instances full access to the AWS account. The statement could be further restricted:

```
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "EC2:Describe*",
      "Resource": "*"
    }
  ]
```


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

IAM Role is given superuser permissions #1

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

IAM Role is given superuser permissions #1

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions