From 5c491f97a2e90d0c1d17ca175cb6a7e3c75e30c4 Mon Sep 17 00:00:00 2001
From: Joseph Manley <j@cloudsumu.com>
Date: Thu, 14 May 2020 05:25:59 -0400
Subject: [PATCH] Give ec2 network permissions

---
 infrastructure/cloudformation/dt/iam.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/infrastructure/cloudformation/dt/iam.yaml b/infrastructure/cloudformation/dt/iam.yaml
index d89239c..6d90e46 100644
--- a/infrastructure/cloudformation/dt/iam.yaml
+++ b/infrastructure/cloudformation/dt/iam.yaml
@@ -33,6 +33,19 @@ Resources:
                   - logs:CreateLogStream
                   - logs:PutLogEvents
                 Resource: "*"
+        - PolicyName: AttachToVpc
+          PolicyDocument:
+            Version: 2012-10-17
+            Statement:
+              - Effect: Allow
+                Action:
+                  - ec2:CreateNetworkInterface
+                  - ec2:DescribeNetworkInterfaces
+                  - ec2:DeleteNetworkInterface
+                  - ec2:DescribeSecurityGroups
+                  - ec2:DescribeSubnets
+                  - ec2:DescribeVpcs
+                Resource: "*"
 
 Outputs:
   DefaultRole: