From 78fd08208d060d1b9f0236438a871785d750dd3c Mon Sep 17 00:00:00 2001
From: Gerard Toonstra <gtoonstra@gmail.com>
Date: Fri, 27 Jun 2025 14:42:00 +0200
Subject: [PATCH] fix: Fix flow logs

---
 modules/database/variables.tf | 2 +-
 modules/networking/iam.tf     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/database/variables.tf b/modules/database/variables.tf
index a0186b2..8b3625c 100644
--- a/modules/database/variables.tf
+++ b/modules/database/variables.tf
@@ -140,7 +140,7 @@ variable "rds_ro_username" {
 
 variable "rds_version" {
   type        = string
-  default     = "11.19"
+  default     = "15.12"
   description = "Override RDS version"
 }
 
diff --git a/modules/networking/iam.tf b/modules/networking/iam.tf
index e6b8acc..c489a29 100644
--- a/modules/networking/iam.tf
+++ b/modules/networking/iam.tf
@@ -41,7 +41,7 @@ resource "aws_iam_role_policy" "vpc_flow_logs" {
         "logs:DescribeLogStreams"
       ],
       "Effect": "Allow",
-      "Resource": "${one(aws_cloudwatch_log_group.vpc_flow_logs[*].arn)}"
+      "Resource": "${one(aws_cloudwatch_log_group.vpc_flow_logs[*].arn)}:*"
     }
   ]
 }