Skip to content

Commit

Permalink
fix(iam/notify-admin-pr): add permissions to upload CSV files so bulk…
Browse files Browse the repository at this point in the history 
… upload will work; add permission to allow listing of SES identities so email sending domain dropdown will work (#1699)
  • Loading branch information
@andrewleith
andrewleith authored Dec 16, 2024
1 parent b9c72ef commit 11ac7e5
Showing 1 changed file with 21 additions and 0 deletions.
21 changes: 21 additions & 0 deletions aws/lambda-admin-pr/iam.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -62,6 +62,27 @@ data "aws_iam_policy_document" "notify_admin_pr" {
"arn:aws:ssm:${var.region}:${var.account_id}:parameter/ENVIRONMENT_VARIABLES"
]
}

statement {
effect = "Allow"
actions = [
"ses:ListIdentities",
"ses:GetIdentityVerificationAttributes"
]
resources = ["*"]
sid = ""
}

statement {
effect = "Allow"
actions = [
"s3:PutObject",
"s3:GetObject"
]
resources = [
"arn:aws:s3:::notification-canada-ca-${var.env}-csv-upload/*"
]
}
}

resource "aws_iam_policy" "notify_admin_pr" {
Expand Down

0 comments on commit 11ac7e5

Please sign in to comment.