From 81b74e0273baba86e60036af588a734618034ca0 Mon Sep 17 00:00:00 2001 From: Iakov Gan Date: Sun, 12 Nov 2023 21:30:38 +0100 Subject: [PATCH] add right for cid lambda to create wg and a bucket --- cfn-templates/cid-cfn.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/cfn-templates/cid-cfn.yml b/cfn-templates/cid-cfn.yml index 46ccfd02..46bbd082 100644 --- a/cfn-templates/cid-cfn.yml +++ b/cfn-templates/cid-cfn.yml @@ -1210,6 +1210,8 @@ Resources: - Effect: Allow Action: - athena:GetWorkGroup + - athena:CreateWorkGroup + - athena:UpdateWorkGroup Resource: Fn::If: - NeedAthenaWorkgroup @@ -1227,6 +1229,7 @@ Resources: Resource: "*" # This is needed to allow Autodetect in CID-CMD - Effect: Allow Action: + - s3:CreateBucket - s3:ListBucket - s3:ListBucketMultipartUploads - s3:ListMultipartUploadParts