updating permissions for lambda

ilmarmur · web-flow · commit 1a354d98c3d4 · 2024-09-17T20:56:13.000-04:00
diff --git a/source/cloudformation/s3auditor_cf.template b/source/cloudformation/s3auditor_cf.template
@@ -725,6 +725,7 @@ Resources:
             Principal:
               Service:
                 - lambda.amazonaws.com
+                - apigateway.amazonaws.com
             Condition: {}
             Action:
               - 'sts:AssumeRole'
@@ -735,6 +736,7 @@ Resources:
         - 'arn:aws:iam::aws:policy/AmazonOpenSearchServiceFullAccess'
         - 'arn:aws:iam::aws:policy/AmazonSSMReadOnlyAccess'
         - 'arn:aws:iam::aws:policy/AmazonSQSFullAccess'
+        - 'arn:aws:iam::aws:policy/service-role/AWSLambdaRole'
       Policies:
         - PolicyName: s3AuditorWriteToExportBucket
           PolicyDocument:
