Merge pull request #847 from fluxcd/int-perm-change

oci/int: Grant new permissions needed by AWS infra

Author: darkowlzz

oci/tests/integration/README.md

@@ -155,16 +155,22 @@ provisioning the infrastructure and running the tests:
                 "eks:UpdateNodegroupVersion",
                 "iam:AttachRolePolicy",
                 "iam:CreateOpenIDConnectProvider",
+                "iam:CreatePolicy",
                 "iam:CreateRole",
                 "iam:DeleteOpenIDConnectProvider",
+                "iam:DeletePolicy",
                 "iam:DeleteRole",
                 "iam:DetachRolePolicy",
                 "iam:GetOpenIDConnectProvider",
+                "iam:GetPolicy",
+                "iam:GetPolicyVersion",
                 "iam:GetRole",
                 "iam:ListAttachedRolePolicies",
                 "iam:ListInstanceProfilesForRole",
+                "iam:ListPolicyVersions",
                 "iam:ListRolePolicies",
                 "iam:TagOpenIDConnectProvider",
+                "iam:TagPolicy",
                 "iam:TagRole",
                 "ssm:GetParameters"
             ],
@@ -294,16 +300,22 @@ module "aws_gh_actions" {
     "eks:UpdateNodegroupVersion",
     "iam:AttachRolePolicy",
     "iam:CreateOpenIDConnectProvider",
+    "iam:CreatePolicy",
     "iam:CreateRole",
     "iam:DeleteOpenIDConnectProvider",
+    "iam:DeletePolicy",
     "iam:DeleteRole",
     "iam:DetachRolePolicy",
     "iam:GetOpenIDConnectProvider",
+    "iam:GetPolicy",
+    "iam:GetPolicyVersion",
     "iam:GetRole",
     "iam:ListAttachedRolePolicies",
     "iam:ListInstanceProfilesForRole",
+    "iam:ListPolicyVersions",
     "iam:ListRolePolicies",
     "iam:TagOpenIDConnectProvider",
+    "iam:TagPolicy",
     "iam:TagRole",
     "ssm:GetParameters"
   ]