Skip to content

fix(iam): apply provider.iam.role.path to state machine execution roles#674

Open
VirtueMe wants to merge 1 commit intoserverless-operations:masterfrom
BANCS-Norway:fix-653-iam-role-path
Open

fix(iam): apply provider.iam.role.path to state machine execution roles#674
VirtueMe wants to merge 1 commit intoserverless-operations:masterfrom
BANCS-Norway:fix-653-iam-role-path

Conversation

@VirtueMe
Copy link

@VirtueMe VirtueMe commented Mar 11, 2026

Summary

  • Applies provider.iam.role.path to all IAM roles generated by the plugin
  • Fixes the state machine execution role (compileIamRole)
  • Fixes the scheduled events role (compileScheduledEvents)
  • Fixes the CloudWatch/EventBridge events role (compileCloudWatchEventEvents)
  • Fixes the API Gateway to Step Functions role (apiGateway/iamRole)
  • Fixes the notifications role (compileNotifications)

Note: Three of the above files (compileCloudWatchEventEvents, apiGateway/iamRole, compileNotifications) also lack permissionsBoundary support — that is a pre-existing gap not introduced by this PR.

Test plan

  • State machine execution role receives Path when provider.iam.role.path is set
  • Scheduled events role receives Path
  • CloudWatch/EventBridge events role receives Path
  • API Gateway role receives Path
  • Notifications role receives Path (passed through generator chain, not patched after)
  • Full test suite passes (432 tests)

Closes #653

🤖 Generated with Claude Code

@VirtueMe @claude
fix(iam): apply provider.iam.role.path to state machine execution roles
41057fd 
Step function IAM roles were not inheriting the path set via
provider.iam.role.path, causing deployment failures when IAM path
restrictions are enforced. Applies the path to both the state machine
execution role and the scheduled events role.

Closes serverless-operations#653

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@VirtueMe VirtueMe mentioned this pull request Mar 11, 2026
Open
@pkg-pr-new
Copy link

pkg-pr-new bot commented Mar 11, 2026

Open in StackBlitz

npm i https://pkg.pr.new/serverless-operations/serverless-step-functions@674

commit: 41057fd

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

serverless-step-functions plugin is not using provider.iam.role.path

1 participant

@VirtueMe