Use pre-existing ssm policy

connoravo-nhs · connoravo-nhs · commit e469749aa6bf · 2025-10-22T16:12:01.000Z
Signed-off-by: Connor Avery &lt;214469360+connoravo-nhs@users.noreply.github.com&gt;
diff --git a/SAMtemplates/functions/main.yaml b/SAMtemplates/functions/main.yaml
@@ -65,32 +65,10 @@ Parameters:
   ToggleGetStatusUpdates:
     Type: String
 
-  TC007NHSNumberValue:
-    Type: String
-
-  TC008NHSNumberValue:
-    Type: String
-
-  TC009NHSNumberValue:
+  SSMParameterPolicy:
     Type: String
 
 Resources:
-  SSMParameterPolicy:
-    Type: AWS::IAM::ManagedPolicy
-    Properties:
-      Description: "Allows reading of project shared SSM parameters"
-      PolicyDocument:
-        Version: 2012-10-17
-        Statement:
-          - Effect: Allow
-            Action:
-              - ssm:GetParameter
-              - ssm:GetParameters
-            Resource:
-              - !Sub arn:aws:ssm:${AWS::Region}:${AWS::AccountId}:parameter/${StackName}-${TC007NHSNumberParameter}
-              - !Sub arn:aws:ssm:${AWS::Region}:${AWS::AccountId}:parameter/${StackName}-${TC008NHSNumberParameter}
-              - !Sub arn:aws:ssm:${AWS::Region}:${AWS::AccountId}:parameter/${StackName}-${TC009NHSNumberParameter}
-
   GetSecretsLayer:
     Type: AWS::Serverless::LayerVersion
     Properties:
diff --git a/SAMtemplates/main_template.yaml b/SAMtemplates/main_template.yaml
@@ -159,9 +159,7 @@ Resources:
         VersionNumber: !Ref VersionNumber
         CommitId: !Ref CommitId
         ToggleGetStatusUpdates: !Ref ToggleGetStatusUpdates
-        TC007NHSNumberValue: !Ref TC007NHSNumberValue
-        TC008NHSNumberValue: !Ref TC008NHSNumberValue
-        TC009NHSNumberValue: !Ref TC009NHSNumberValue
+        SSMParameterPolicy: !GetAtt Parameters.Outputs.GetPfPParameterPolicy
 
   StateMachines:
     Type: AWS::Serverless::Application
