DEV Community: Marc Qualie The latest articles on DEV Community by Marc Qualie (@marcqualie). https://dev.to/marcqualie https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F74766%2Fc2442f01-db2b-4e19-9278-856dce80dc19.jpg DEV Community: Marc Qualie https://dev.to/marcqualie en Vite + React Quickstart Marc Qualie Mon, 24 Feb 2025 11:00:00 +0000 https://dev.to/marcqualie/vite-react-quickstart-1bcl https://dev.to/marcqualie/vite-react-quickstart-1bcl <p>I've been setting up a lot of quick experiments and prototypes lately to prove concepts. For these kind of apps I don't need a full stack like NextJS, but I also want to be able to use React + TypeScript for various reasons such as component testing or debugging. The aim is also to avoid hosted solutions like Code Sandbox or Stackblitz so I can use the code offline and also pull in local packages that aren't public.</p> <p>It's surprisingly simple to get a working react app locally now with Vite and a few lines of html/jsx. I like this approach because it's a "close to the metal" as possible with react avoids complex build steps.</p> <p>It's worth noting this is in-fact raw react and isn't designed for production use. Many layers will be needed on top for things like routing, SSR, hot reloading, etc but I don't need any of those for my quick throw away tests.</p> <h2> Dependencies </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>yarn add react react-dom yarn add <span class="nt">-D</span> @types/react @types/react-dom vite </code></pre> </div> <p>Yes, I'm still using yarn since my primary work toolchain is based around it but you can replace <code>yarn</code> with <code>pnpm</code> or <code>npm</code> to get the same result.</p> <h2> Files </h2> <h3> index.html </h3> <div class="highlight js-code-highlight"> <pre class="highlight html"><code><span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"UTF-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>React + Vite Prototype<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"/app.tsx"</span> <span class="na">type=</span><span class="s">"module"</span><span class="nt">&gt;</span> <span class="nt">&lt;/script&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <h3> app.tsx </h3> <div class="highlight js-code-highlight"> <pre class="highlight jsx"><code><span class="k">import</span> <span class="nx">React</span><span class="p">,</span> <span class="p">{</span> <span class="nx">type</span> <span class="nx">FC</span><span class="p">,</span> <span class="nx">StrictMode</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">createRoot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react-dom/client</span><span class="dl">'</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">App</span><span class="p">:</span> <span class="nx">FC</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nt">div</span><span class="p">&gt;</span>Hello, world!<span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">)</span> <span class="p">}</span> <span class="nb">document</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">DOMContentLoaded</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">createRoot</span><span class="p">(</span><span class="nb">document</span><span class="p">.</span><span class="nx">body</span><span class="p">).</span><span class="nf">render</span><span class="p">(</span> <span class="p">&lt;</span><span class="nc">StrictMode</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">App</span> <span class="p">/&gt;</span> <span class="p">&lt;/</span><span class="nc">StrictMode</span><span class="p">&gt;,</span> <span class="p">)</span> <span class="p">})</span> </code></pre> </div> <h2> Running </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>vite dev </code></pre> </div> <p>You can now access the app on <a href="http://localhost:5173" rel="noopener noreferrer">http://localhost:5173</a> (default port). You should see "Hello, world!" in your browser if everything worked.</p> <h2> Conclusion </h2> <p>This is mainly here for my own reference so I can quickly copy + paste this when setting up a new experiment. The goal is to have as basic of a setup as possible to avoid conflicts with any dependencies then replicate the behaviour from the experiment into other projects.</p> react vite homelab ubuntu Disable PS5 Controller button on MacOS Marc Qualie Sun, 26 Jan 2025 23:28:57 +0000 https://dev.to/marcqualie/disable-ps5-controller-button-on-macos-22m3 https://dev.to/marcqualie/disable-ps5-controller-button-on-macos-22m3 <p>I often use my PS5 controller on my Mac Studio with PS Remote Play to quickly login and check something or pick up a time-bound item without having to leave my work desk. This is great until you press the PS button and it opens the app switch menu, losing focus on the PS remote play window. To disable the PlayStation controller button default behaviour on MacOS, run the following command in the terminal:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>defaults write com.apple.GameController bluetoothPrefsMenuLongPressAction <span class="nt">-integer</span> 0 </code></pre> </div> <p>If you want to revert this for some reason, you can set the value to <code>1</code> instead.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>defaults write com.apple.GameController bluetoothPrefsMenuLongPressAction <span class="nt">-integer</span> 1 </code></pre> </div> <p>Based on the name I'm assuming this works with (and is designed for) to Xbox controller since you usually long press that button to trigger menus.</p> <p>From my searching, this used ot be available in the System Preferences, but it seems to have been removed in recent versions of macOS. The above was last verified to work for me on MacOS Sonoma 14.3.</p> <p>I hope this saves someone some pain.</p> macos gaming ps5 Upgrading legacy Terraform providers Marc Qualie Thu, 27 May 2021 00:00:00 +0000 https://dev.to/marcqualie/upgrading-legacy-terraform-providers-22nj https://dev.to/marcqualie/upgrading-legacy-terraform-providers-22nj <p>I recenty worked on some pretty old Terraform projects (built using v0.10.x I believe). The state on these projects is no longer compatible with v0.13+, which causes errors when trying to run any command. Quite frustrating and the docs don't seem to help much.</p> <p>Apart from manually downgrading to 0.13, running <code>terraform 0.13upgrade</code>, then upgrading to the latest version, there didn't seem to be any documented solution.</p> <p>You will likely have some kind of error, similar to the following:</p> <blockquote> <p>Error: Invalid legacy provider address<br><br> This configuration or its associated state refers to the unqualified provider "aws"<br><br> You must complete the Terraform 0.13 upgrade process before upgrading to later</p> </blockquote> <p>If you've already upgraded past terraform 0.13 (likely if you're reading this), then you'll instead need to replace the state values directly. This can be done with the following command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>terraform state replace-provider registry.terraform.io/-/aws hashicorp/aws terraform state replace-provider registry.terraform.io/-/github hashicorp/aws </code></pre> </div> <p>Related to this, the Github provider moved from hashicorp namespace to <code>integrations/github</code>. You will need to update your existing state with this new reference. An error message you see may look something like the following:</p> <blockquote> <p>Warning: Additional provider information from registry<br><br> The remote registry returned warnings for registry.terraform.io/hashicorp/github:<br> For users on Terraform 0.13 or greater, this provider has moved to integrations/github. Please update your source in required_providers.</p> </blockquote> <p>You can resolve this with the following config:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>terraform { required_providers { github = { source = "integrations/github" version = "~&gt; 4.10" } } } </code></pre> </div> <p>Once you've made that change, run the following to sync it to your state:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>terraform state replace-provider hashicorp/github integrations/github </code></pre> </div> <p>Now you can run <code>terraform init</code> which should show green, and that it is using <code>integrations/github</code>.</p> <p>My current output shows the following:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>terraform -version Terraform v0.15.4 on darwin_amd64 + provider registry.terraform.io/integrations/github v4.10.1 </code></pre> </div> terraform aws github Testing Rails 6 Zeitwerk Autoloading Marc Qualie Mon, 25 Jan 2021 14:17:50 +0000 https://dev.to/marcqualie/testing-rails-6-zeitwerk-autoloading-23if https://dev.to/marcqualie/testing-rails-6-zeitwerk-autoloading-23if <p>Rails 6 introduced a new autoloader called Zeitwerk. While it has many many improvements, one of the main changes is how strict it is with filenames and the constants they define. Unless you have full coverage on your application (few apps actually reach 100%) it can be quite easy to end up with an app that won't boot in your staging/production environment.</p> <p>This is a welcome change from me, I believe it leads to much more stable and predictable codebases when the filenames and constants match 1:1. This can become an issue for anyone used to working with the rails classic autoloader since that allowed developers to get away with mostly anything inside their files.</p> <p>Adding the following spec to any new rails 6+ project will protect from such problems, as the autoloading will be triggered in the CI environment instead; before merge and deploy. This is also perfect if you're upgrading any older Rails 5 apps and you're nervous about switching to the new autoloader.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># spec/zeitwerk_spec.rb</span> <span class="nb">require</span> <span class="s1">'rails_helper'</span> <span class="n">describe</span> <span class="s1">'Zeitwerk'</span> <span class="k">do</span> <span class="n">it</span> <span class="s1">'eager loads all files'</span> <span class="k">do</span> <span class="n">expect</span> <span class="k">do</span> <span class="no">Zeitwerk</span><span class="o">::</span><span class="no">Loader</span><span class="p">.</span><span class="nf">eager_load_all</span> <span class="k">end</span><span class="p">.</span><span class="nf">to_not</span> <span class="n">raise_error</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <blockquote> <p>Original reference post for code snippet <a href="https://mvaragnat.medium.com/rails-6-and-rspec-how-to-test-zeitwerk-mode-81782b6d3388" rel="noopener noreferrer">Rails 6 and Rspec : How to test Zeitwerk mode</a> by Matthieu Varagnat</p> </blockquote> <p>You can take this a step further on CI and have a dedicated job that runs specifically to check the autoloading. This can be dne before the tests (to avoid wasted minutes), or in parallel to highlight an autoloading issues in your PR status checks.</p> <p>The following line can run in any shell to perform the same job as the rspec snippet above:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>rails r <span class="s1">'Zeitwerk::Loader.eager_load_all'</span> </code></pre> </div> <p>Here is an example of my CircleCI flow for a recently upgraded rails project. Notice how Zeitwerk failure prevented a ton of other jobs triggering, which would have used quite a lot of resources and failed much later.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fmedia.graphcms.com%2FSObuqzISCSF58TfizHGx" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fmedia.graphcms.com%2FSObuqzISCSF58TfizHGx" alt="Screen-Shot-2021-01-20-14-02-56.26.png" width="800" height="213"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fmedia.graphcms.com%2Fvrfoog6yQTacEtKB7y0x" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fmedia.graphcms.com%2Fvrfoog6yQTacEtKB7y0x" alt="Screen-Shot-2021-01-20-14-05-09.95.png" width="800" height="194"></a></p> <p>This, of course, does not replace the need for an extensive test suite, but it can save you in the early days of prototype development where a typo or unused class can slip into the codebase when working at a fast pace.</p> rails ci IAM Policy for humans Marc Qualie Tue, 26 May 2020 19:25:49 +0000 https://dev.to/marcqualie/iam-policy-for-humans-4bln https://dev.to/marcqualie/iam-policy-for-humans-4bln <p>Configuring IAM is essential for any AWS account. The most common use case is granting access to EC2 instances, or allowing web apps to read/write to S3. While it's not recommended to make any direct changes in the AWS console, it's sometimes helpful to allow humans to browse around and view configurations.</p> <p>To simplify management of these user accounts, it's helpful to allow individuals to manage their own credentials and configure things like MFA devices. Below is the policy I created as a drop in starting point for allowing any human users to login to the console. Note, this does not grant any access to any resources inside AWS, only for a user to manage their own password, access keys and MFA devices. Permissions for resources still need to be added otherwise the console will be a very boring place.</p> <p>The easist way to apply this policy to all humans is to create an IAM group called <code>humans</code>. Whenever you wish to allow a user to login the AWS console and manage their own account, simply add them to the <code>humans</code> group.</p> <h3> Allow viewing of account status </h3> <p>Users need to be able to see what their account settings currently are.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowViewAccountInfo"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:GetAccountPasswordPolicy"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetAccountSummary"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetUser"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListVirtualMFADevices"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Change Password </h3> <p>A user should be allowed to change their own password without contacting their administrator.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnPasswords"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:ChangePassword"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Access Key Management </h3> <p>If users want to interact with the AWS APIs, they'll need to generate access keys that inherit their policy permissions.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnAccessKeys"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:CreateAccessKey"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:DeleteAccessKey"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetAccessKeyLastUsed"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListAccessKeys"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:UpdateAccessKey"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Manage MFA </h3> <p>Using MFA (Multi-Factor Authentication) is highly encouraged, so all users should be able to manage their own virtual MFA devices.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnUserMFA"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:DeactivateMFADevice"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:EnableMFADevice"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetUser"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListMFADevices"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ResyncMFADevice"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Full Policy </h3> <p>The full policy combined is dsiplayed below in full.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2012-10-17"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Statement"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowViewAccountInfo"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:GetAccountPasswordPolicy"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetAccountSummary"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetUser"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListVirtualMFADevices"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnPasswords"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:ChangePassword"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnAccessKeys"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:CreateAccessKey"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:DeleteAccessKey"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetAccessKeyLastUsed"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListAccessKeys"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:UpdateAccessKey"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"AllowManageOwnUserMFA"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"iam:DeactivateMFADevice"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:EnableMFADevice"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:GetUser"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ListMFADevices"</span><span class="p">,</span><span class="w"> </span><span class="s2">"iam:ResyncMFADevice"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:iam::*:user/${aws:username}"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> security aws iam