Merge remote-tracking branch 'origin/feature/iam/alex-changes' into feature/iam/alex-changes

1 files changed, 28 insertions, 0 deletions

diff --git a/terraform/iam.tf b/terraform/iam.tf
index 20aeab3..6c6b4fc 100644
--- a/terraform/iam.tf
+++ b/terraform/iam.tf
@@ -143,3 +143,31 @@ resource "aws_iam_role_policy_attachment" "cw_attachment" {
 ################
 # RDS POLICIES #
 ################
+
+###################
+# EVENTS POLICIES #
+###################
+
+data "aws_iam_policy_document" "cloudwatch_events_policy" {
+  statement {
+    actions = [
+      "events:PutRule",
+      "events:PutTargets",
+      "events:RemoveTargets",
+      "events:DeleteRule",
+      "events:PutEvents"
+    ]
+    resources = ["*"]
+    effect    = "Allow"
+  }
+}
+
+resource "aws_iam_policy" "cloudwatch_events_policy" {
+  name   = "cloudwatch_events_policy"
+  policy = data.aws_iam_policy_document.cloudwatch_events_policy.json
+}
+
+resource "aws_iam_role_policy_attachment" "cloudwatch_events_attachment" {
+  role       = aws_iam_role.multi_service_role.name
+  policy_arn = aws_iam_policy.cloudwatch_events_policy.arn
+}