From c9df55cbc147e1686bb4b3c97577860d6ded3c61 Mon Sep 17 00:00:00 2001
From: Mikhail Berezovskiy <mhlbrz@amazon.com>
Date: Tue, 7 Nov 2023 10:31:59 -0800
Subject: [PATCH] change iam auth policy creation order put policy, enable IAM

---
 pkg/deploy/lattice/iamauthpolicy_manager.go | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/pkg/deploy/lattice/iamauthpolicy_manager.go b/pkg/deploy/lattice/iamauthpolicy_manager.go
index 98c3e44d..a6d65b94 100644
--- a/pkg/deploy/lattice/iamauthpolicy_manager.go
+++ b/pkg/deploy/lattice/iamauthpolicy_manager.go
@@ -34,11 +34,11 @@ func (m *IAMAuthPolicyManager) putSn(ctx context.Context, policy model.IAMAuthPo
 		return model.IAMAuthPolicyStatus{}, err
 	}
 	resourceId := *sn.SvcNetwork.Id
-	err = m.enableSnIAMAuth(ctx, resourceId)
+	err = m.putPolicy(ctx, resourceId, policy.Policy)
 	if err != nil {
 		return model.IAMAuthPolicyStatus{}, err
 	}
-	err = m.putPolicy(ctx, resourceId, policy.Policy)
+	err = m.enableSnIAMAuth(ctx, resourceId)
 	if err != nil {
 		return model.IAMAuthPolicyStatus{}, err
 	}
@@ -51,11 +51,11 @@ func (m *IAMAuthPolicyManager) putSvc(ctx context.Context, policy model.IAMAuthP
 		return model.IAMAuthPolicyStatus{}, err
 	}
 	resourceId := *svc.Id
-	err = m.enableSvcIAMAuth(ctx, resourceId)
+	err = m.putPolicy(ctx, resourceId, policy.Policy)
 	if err != nil {
 		return model.IAMAuthPolicyStatus{}, err
 	}
-	err = m.putPolicy(ctx, resourceId, policy.Policy)
+	err = m.enableSvcIAMAuth(ctx, resourceId)
 	if err != nil {
 		return model.IAMAuthPolicyStatus{}, err
 	}