From 1c2e72b23b227c509f0dfc3285a9f99b1b80b910 Mon Sep 17 00:00:00 2001
From: DiegoVictor <diegovictorgonzaga@gmail.com>
Date: Fri, 12 Jul 2024 09:27:40 -0300
Subject: [PATCH] Allow lambda to read cluster credentials secret

---
 template.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/template.yml b/template.yml
index 6807c10..0ccbd88 100644
--- a/template.yml
+++ b/template.yml
@@ -63,6 +63,13 @@ Resources:
       CodeUri:
         Bucket: !ImportValue coderunner-BucketName
         Key: !Ref CodeUri
+      Policies:
+        - Version: '2012-10-17'
+          Statement:
+            - Effect: Allow
+              Action:
+                - secretsmanager:GetSecretValue
+              Resource: '*'
       Environment:
         Variables:
           NODE_ENV: prod