From f2d38c22e097969586de0ac8cb7ab1a2aac581de Mon Sep 17 00:00:00 2001
From: Cameron Hall <me@chall.id.au>
Date: Fri, 23 Sep 2022 20:56:20 +1200
Subject: [PATCH] fix: added missing permissions for S3 and Redshift

---
 aws/datadog_integration_role.yaml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/aws/datadog_integration_role.yaml b/aws/datadog_integration_role.yaml
index 8e6f62a6..71c3b167 100644
--- a/aws/datadog_integration_role.yaml
+++ b/aws/datadog_integration_role.yaml
@@ -144,12 +144,19 @@ Resources:
                   - 'rds:Describe*'
                   - 'rds:List*'
                   - 'redshift:DescribeClusters'
+                  - 'redshift:DescribeClusterParameterGroups'
                   - 'redshift:DescribeLoggingStatus'
                   - 'route53:List*'
+                  - 's3:GetAccountPublicAccessBlock'
+                  - 's3:GetBucketAcl'
                   - 's3:GetBucketLogging'
                   - 's3:GetBucketLocation'
                   - 's3:GetBucketNotification'
+                  - 's3:GetBucketPolicyStatus'
+                  - 's3:GetBucketPublicAccessBlock'
                   - 's3:GetBucketTagging'
+                  - 's3:GetBucketVersioning'
+                  - 's3:GetEncryptionConfiguration'
                   - 's3:ListAllMyBuckets'
                   - 's3:PutBucketNotification'
                   - 'ses:Get*'