From 744f061d4a8b5fff4007c460f960c38868f6caa4 Mon Sep 17 00:00:00 2001
From: Maciej Kwidzinski <mkwidzinski@atlassian.com>
Date: Fri, 19 Apr 2024 16:44:06 +0200
Subject: [PATCH] Permit S3 tagging for CloudFormation

Avoid errors like this:
```
Resource handler returned message: "Encountered a permissions error performing a tagging operation, please add required tag permissions.
See https://repost.aws/knowledge-center/cloudformation-tagging-permission-error for how to resolve.
Resource handler returned message: "Access Denied (Service: S3, Status Code: 403, Request ID: GDYGC3TFW6806N9H, Extended Request ID: ...)"" (RequestToken: ..., HandlerErrorCode: UnauthorizedTaggingOperation)
```
---
 src/main/resources/iam-policy.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/main/resources/iam-policy.json b/src/main/resources/iam-policy.json
index 92e038a..15104d7 100644
--- a/src/main/resources/iam-policy.json
+++ b/src/main/resources/iam-policy.json
@@ -48,6 +48,7 @@
         "s3:DeleteObject",
         "s3:GetObject",
         "s3:ListBucket",
+        "s3:PutBucketTagging",
         "s3:PutObject",
         "s3:GetBucketPolicy",
         "s3:PutBucketPolicy",