From b092979297285dc30316e4ca25c575cda9fd587f Mon Sep 17 00:00:00 2001
From: Jack Naglieri <jack.naglieri@airbnb.com>
Date: Tue, 12 Dec 2017 13:52:12 -0800
Subject: [PATCH] [tf] feedback from #525

---
 terraform/modules/tf_stream_alert_kinesis_streams/iam.tf | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/terraform/modules/tf_stream_alert_kinesis_streams/iam.tf b/terraform/modules/tf_stream_alert_kinesis_streams/iam.tf
index 3a2d085b5..46bdec4c9 100644
--- a/terraform/modules/tf_stream_alert_kinesis_streams/iam.tf
+++ b/terraform/modules/tf_stream_alert_kinesis_streams/iam.tf
@@ -26,10 +26,9 @@ resource "aws_iam_group_membership" "stream_alert" {
 
 // IAM Group Policy: Allow users in the group to PutRecords to Kinesis
 resource "aws_iam_group_policy" "stream_alert_kinesis_put_records" {
-  count = "${var.create_user ? 1 : 0}"
-  name  = "KinesisPutRecords"
-  group = "${aws_iam_group.stream_alert.id}"
-
+  count  = "${var.create_user ? 1 : 0}"
+  name   = "KinesisPutRecords"
+  group  = "${aws_iam_group.stream_alert.id}"
   policy = "${data.aws_iam_policy_document.stream_alert_writeonly.json}"
 }
 
@@ -45,9 +44,9 @@ data "aws_iam_policy_document" "stream_alert_writeonly" {
 
   statement {
     actions = [
-      "kinesis:PutRecord*",
       "kinesis:DescribeStream",
       "kinesis:ListStreams",
+      "kinesis:PutRecord*",
     ]
 
     resources = [