dropthejase/louis@b3674db6

infra: fix IAM permissions, EventBridge PDF rule, deploy-agent authorizer

↗ view on GitHub · Jason Lee · 2026-05-11 · b3674db6

- Lambda + AgentCore roles: extend Bedrock resources to wildcard region for
  cross-region inference profiles; add inference-profile/* ARN
- API Lambda role: upgrade sessionsBucket from grantRead to grantReadWrite
  (delete session on chat delete, Phase 5)
- AgentCore role: add s3:ListBucket on sessionsBucket
- AuthStack Identity Pool: add converted-pdfs/ prefix to per-user S3 policy
  and extend ListBucket condition to cover all three prefixes
- ConversionStack: add PDF EventBridge rule (documents/*.pdf trigger)
- deploy-agent.sh: include authorizer-configuration on update-agent-runtime
  (was only set on create); inject TABULAR_AGENT_ARN / MAIN_AGENT_ARN from
  SSM into runtime env vars (best-effort, skipped if not yet deployed)

Repository	dropthejase/louis
Author	Jason Lee <12leeejk2@gmail.com>
Authored	2026-05-11T12:59:14+01:00
Parents	`7845ed46`
Stats	4 files changed , +53 , -11
Part of	LibreOffice conversion Lambda (DOCX↔PDF) wired via EventBridge

Repository

dropthejase/louis

Author

Jason Lee <12leeejk2@gmail.com>

Authored

2026-05-11T12:59:14+01:00

Parents

7845ed46

Stats

4 files changed , +53 , -11

Part of

LibreOffice conversion Lambda (DOCX↔PDF) wired via EventBridge

Capture this commit into my fork

Download a Markdown prompt that tells Claude how to port this exact commit into your working tree. Run it via claude -p < capture-commit-b3674db6.md from inside the repo you want the change in.

⬇ Download capture-commit-b3674db6.md