NRL-693 add policy and clear typo

Author: eesa456

terraform/account-wide-infrastructure/modules/lambda-errors-metric-alarm/iam.tf

@@ -20,3 +20,36 @@ resource "aws_iam_policy" "lambda-errors-topic-kms-read-write" {
     ]
   })
 }
+
+data "aws_caller_identity" "current" {}
+
+data "aws_iam_policy_document" "sns_kms_key_policy" {
+  policy_id = "CloudWatchEncryptUsingKey"
+
+  statement {
+    effect = "Allow"
+    actions = [
+      "kms:*"
+    ]
+    resources = ["*"]
+
+    principals {
+      type        = "AWS"
+      identifiers = ["arn:aws:iam::${data.aws_caller_identity.current.account_id}:root"]
+    }
+  }
+
+  statement {
+    effect = "Allow"
+    actions = [
+      "kms:Decrypt",
+      "kms:GenerateDataKey"
+    ]
+    resources = ["*"]
+
+    principals {
+      type        = "Service"
+      identifiers = ["cloudwatch.amazonaws.com"]
+    }
+  }
+}

terraform/account-wide-infrastructure/modules/lambda-errors-metric-alarm/kms.tf

@@ -1,6 +1,7 @@
 resource "aws_kms_key" "lambda-errors-topic-key" {
   description             = "Lambda errors SNS topic table KMS key"
   deletion_window_in_days = var.kms_deletion_window_in_days
+  policy                  = data.aws_iam_policy_document.sns_kms_key_policy.json
 
 }
 

tests/features/utils/api_client.py

@@ -18,7 +18,7 @@
     "736373009",  # End of life care plan
     "16521000000101",  # Lloyd George record folder
     "736366004",  # Advanced Care Plan
-    "735324008",  # Treatement Escalation Plan
+    "735324008",  # Treatment Escalation Plan
 ]
 
 

tests/performance/environment.py

@@ -29,7 +29,7 @@ class LogReference:
     "861421000000109": "End of Life Care Coordination Summary",
     "887701000000100": "Emergency Health Care Plans",
     "736366004": "Advanced Care Plan",
-    "735324008": "Treatement Escalation Plan",
+    "735324008": "Treatment Escalation Plan",
 }