fix: Not is possible create iam_role_statements with awsvpc or without load balancer

[leandrozimmer]

Description

Is not possible create iam_role_statements with awsvpc or without load balancer

Motivation and Context

Create iam_role_statements with network_mode = awsvpc and no load balancer

Breaking Changes

No

How Has This Been Tested?

Yes

[bryantbiggs]

What are you trying to do, and what challenges or errors are you running into?

[leandrozimmer]

Pre-Commit / Max TF pre-commit (pull_request) Failing after 1m

[bryantbiggs]

Lets not worry about the CI checks right now - What are you trying to do, and what challenges or errors are you running into?

[leandrozimmer]

I would like add role permissions, via iam_role_statements, but I'm using network_mode=awsvpc and haven't load balancer, in this case I'm using namespace and VPCLink via ApiGateway.
Because the the line
needs_iam_role = var.network_mode != "awsvpc" && length(var.load_balancer) > 0
never create. Then I added the OR condition and check iam_role_statements to no create empty role policy.
create_iam_role = var.create && ( var.create_iam_role && var.iam_role_statements != {} || local.needs_iam_role )

[bryantbiggs]

What permissions are you trying to add, and what are they needed for?

[leandrozimmer]

You're correct. I was confused, I need to use task_iam_role_statements. I'll pay more attention to input variables documentation. Sorry and thank you.

[github-actions]

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.