Grant GetBucketVersioning permission to the RPK User

frenchfrywpepper · frenchfrywpepper · commit adf20339c299 · 2024-07-09T16:33:41.000-04:00
This is used during byoc apply validations where we check the versioning
configuration of the bucket to see if it matches our recommendation.

management bucket - should be versioned
cloud storage bucket - should not be versioned
diff --git a/customer-managed/aws/terraform/iam_rpk_user.tf b/customer-managed/aws/terraform/iam_rpk_user.tf
@@ -261,6 +261,7 @@ data "aws_iam_policy_document" "byovpc_rpk_user_2" {
       "s3:PutObjectTagging",
       "s3:GetObjectVersion",
       "s3:ListBucketVersions",
+      "s3:GetBucketVersioning",
     ]
     resources = [
       aws_s3_bucket.management.arn,
@@ -272,6 +273,7 @@ data "aws_iam_policy_document" "byovpc_rpk_user_2" {
     effect = "Allow"
     actions = [
       "s3:ListBucket",
+      "s3:GetBucketVersioning",
     ]
     resources = [
       aws_s3_bucket.redpanda_cloud_storage.arn,
