From 4e3ac0846f8ad12d1e0a1e1d70878927ff54b8cf Mon Sep 17 00:00:00 2001
From: DiegoVictor <diegovictorgonzaga@gmail.com>
Date: Mon, 17 Jun 2024 20:30:21 -0300
Subject: [PATCH] Add permission to lambda to read secret

---
 template.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/template.yml b/template.yml
index bcc1bd3..58a1477 100644
--- a/template.yml
+++ b/template.yml
@@ -35,6 +35,13 @@ Resources:
         SecurityGroupIds:
           - !ImportValue coderunner-LambdaSecurityGroupId
         SubnetIds: !Split [ ',', !ImportValue coderunner-SubnetsId ]
+      Policies:
+        - Version: '2012-10-17'
+          Statement:
+            - Effect: Allow
+              Action:
+                - secretsmanager:GetSecretValue
+              Resource: '*'
       Environment:
         Variables:
           PRISMA_CLI_BINARY_TARGETS: rhel-openssl-3.0.x