Support adding ACM Renewal Permission on AWS Private CA created via ACK

[anbaig]

Is your feature request related to a problem?

Currently, when creating a CA resource, there is no way to create the CA in a way that let's AWS Certificate Manager have permissions to conduct renewals for private certificates created via RequestCertificate. This means that after creating the Private CA, you need to make a manual call to add the permission, otherwise, renewals will not succeed.

Describe the solution you'd like

Either implementing an option on the PrivateCA resource to grant permission to ACM for renewals or a new ACK resource that models permissions on AWS Private CA.

[github-actions]

Hello @anbaig 👋 Thank you for opening an issue in ACK! A maintainer will triage this issue soon.

We encourage community contributions, so if you're interested in tackling this yourself or suggesting a solution, please check out our Contribution and Code of Conduct guidelines.

You can find more information about ACK on our website.