[CDK] DynamoDB 권한 추가

 

배포할 람다 함수에 DynamoDB 권한을 주는 policy 정책 생성 코드입니다.

const dynamoDbPolicyStatement = new iam.PolicyStatement({
  effect: iam.Effect.ALLOW,
  actions: [
    'dynamodb:putItem',
    'dynamodb:scan',
    'dynamodb:query',
    'dynamodb:getItem',
    'dynamodb:deleteItem',
    'dynamodb:updateItem',
    'dynamodb:batchWriteItem',
  ],
  resources: [
    `${customProps.bookingsTableArn}`,
  ],
})

LambdaFunction.addToRolePolicy(dynamoDbPolicyStatement)