Add permission to lambda to read secret

DiegoVictor · Jun 17, 2024 · 4e3ac08 · 4e3ac08
1 parent 50dcd07
commit 4e3ac08
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/template.yml b/template.yml
@@ -35,6 +35,13 @@ Resources:
         SecurityGroupIds:
           - !ImportValue coderunner-LambdaSecurityGroupId
         SubnetIds: !Split [ ',', !ImportValue coderunner-SubnetsId ]
+      Policies:
+        - Version: '2012-10-17'
+          Statement:
+            - Effect: Allow
+              Action:
+                - secretsmanager:GetSecretValue
+              Resource: '*'
       Environment:
         Variables:
           PRISMA_CLI_BINARY_TARGETS: rhel-openssl-3.0.x