ModusCreateOrg
diff --git a/‎terraform/bootstrap/jenkins.tf
Lines changed: 7 additions & 0 deletions b/‎terraform/bootstrap/jenkins.tf
Lines changed: 7 additions & 0 deletions
@@ -31,6 +31,13 @@ data "aws_iam_policy_document" "terraform_backend_role_policy_document" {
     actions   = ["s3:*"]
     resources = ["arn:aws:s3:::${module.bootstrap.state_bucket}/*"]
   }
+
+  statement {
+    effect = "Allow"
+
+    actions   = ["dynamodb:*"]
+    resources = ["arn:aws:dynamodb:${var.aws_region}:${data.aws_caller_identity.current.account_id}:table/${module.bootstrap.dynamodb_table}"]
+  }
 }
 
 resource "aws_iam_policy" "terraform_backend_role_policy" {
Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,13 @@ data "aws_iam_policy_document" "terraform_backend_role_policy_document" {`
`31`	`31`	`actions = ["s3:*"]`
`32`	`32`	`resources = ["arn:aws:s3:::${module.bootstrap.state_bucket}/*"]`
`33`	`33`	`}`
	`34`	`+`
	`35`	`+ statement {`
	`36`	`+ effect = "Allow"`
	`37`	`+`
	`38`	`+ actions = ["dynamodb:*"]`
	`39`	`+ resources = ["arn:aws:dynamodb:${var.aws_region}:${data.aws_caller_identity.current.account_id}:table/${module.bootstrap.dynamodb_table}"]`
	`40`	`+ }`
`34`	`41`	`}`
`35`	`42`
`36`	`43`	`resource "aws_iam_policy" "terraform_backend_role_policy" {`