Skip to content

Commit f733b33

Browse files
jameslinnelljameslinnell
authored
[NDR-244] Add policies to Fhir lambdas for reading db and s3 (#450)
1 parent d9b46e8 commit f733b33

File tree

3 files changed

+5
-0
lines changed

3 files changed

+5
-0
lines changed

infrastructure/lambda-get-document-fhir.tf

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -40,8 +40,10 @@ module "get-doc-fhir-lambda" {
4040
iam_role_policy_documents = [
4141
module.ndr-app-config.app_config_policy,
4242
module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
43+
module.pdm_dynamodb_table.dynamodb_read_policy_document,
4344
aws_iam_policy.ssm_access_policy.policy,
4445
module.ndr-lloyd-george-store.s3_read_policy_document,
46+
module.pdm-document-store.s3_read_policy_document,
4547
]
4648
kms_deletion_window = var.kms_deletion_window
4749
rest_api_id = aws_api_gateway_rest_api.ndr_doc_store_api.id

infrastructure/lambda-post-document-fhir.tf

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,7 @@ module "post-document-references-fhir-lambda" {
55
iam_role_policy_documents = [
66
module.document_reference_dynamodb_table.dynamodb_write_policy_document,
77
module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
8+
module.pdm_dynamodb_table.dynamodb_write_policy_document,
89
module.ndr-bulk-staging-store.s3_write_policy_document,
910
module.ndr-app-config.app_config_policy,
1011
aws_iam_policy.ssm_access_policy.policy

infrastructure/lambda-search-document-references-fhir.tf

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,8 @@ module "search-document-references-fhir-lambda" {
77
module.document_reference_dynamodb_table.dynamodb_write_policy_document,
88
module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
99
module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
10+
module.pdm_dynamodb_table.dynamodb_read_policy_document,
11+
module.pdm_dynamodb_table.dynamodb_write_policy_document,
1012
module.ndr-lloyd-george-store.s3_read_policy_document,
1113
module.ndr-document-store.s3_read_policy_document,
1214
module.ndr-app-config.app_config_policy

0 commit comments

Comments
 (0)