fix: Add missing template file.

jamesiarmes · jamesiarmes · commit 8f30d724ecfd · 2025-10-22T11:46:08.000-04:00
diff --git a/tofu/modules/deployment/templates/state-policy.yaml.tftpl b/tofu/modules/deployment/templates/state-policy.yaml.tftpl
@@ -0,0 +1,26 @@
+Version: "2012-10-17"
+Statement:
+  - Sid: InfraStateAccess
+    Effect: Allow
+    Action:
+      - s3:CreateBucket
+      - s3:ListBucket
+      - s3:GetBucketLocation
+      - s3:GetObject
+      - s3:PutObject
+      - s3:DeleteObject
+    Resource:
+      - arn:${partition}:s3:::${project}-${environment}-tfstate
+      - arn:${partition}:s3:::${project}-${environment}-tfstate/*
+  - Sid: InfraLockAccess
+    Effect: Allow
+    Action:
+      - dynamodb:CreateTable
+      - dynamodb:DescribeTable
+      - dynamodb:DeleteTable
+      - dynamodb:UpdateTable
+      - dynamodb:GetItem
+      - dynamodb:PutItem
+      - dynamodb:DeleteItem
+    Resource:
+      - arn:${partition}:dynamodb:${region}:${account_id}:table/${environment}.tfstate
