fix: Add cloudtrail:LookupEvents IAM rights (#19)

jani-flaaming-rebase · web-flow · commit bba2d9104715 · 2020-10-28T21:29:24.000-07:00
To fix following error:
User:
arn:aws:sts::XYZ:assumed-role/datadog-integration-role/vault-app3.eu1.prod.dog-datadog-delancie-crawlerXYZ
is not authorized to perform: cloudtrail:LookupEvents
diff --git a/main.tf b/main.tf
@@ -63,6 +63,7 @@ resource "aws_iam_policy" "datadog-core" {
         "cloudfront:ListDistributions",
         "cloudtrail:DescribeTrails",
         "cloudtrail:GetTrailStatus",
+        "cloudtrail:LookupEvents",
         "cloudwatch:Describe*",
         "cloudwatch:Get*",
         "cloudwatch:List*",
