From 180ced0a9d30201df3fd5d34431e40a2699671f7 Mon Sep 17 00:00:00 2001
From: Yisheng Cai <yisheng.cai@streamnative.io>
Date: Fri, 22 Nov 2024 23:29:04 +0800
Subject: [PATCH] Add missing permissions

---
 modules/aws/vendor-access/files/provision2.json.tpl | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/modules/aws/vendor-access/files/provision2.json.tpl b/modules/aws/vendor-access/files/provision2.json.tpl
index 53f64df..89dbf68 100644
--- a/modules/aws/vendor-access/files/provision2.json.tpl
+++ b/modules/aws/vendor-access/files/provision2.json.tpl
@@ -100,7 +100,10 @@
       "Effect": "Allow",
       "Action": [
         "eks:TagResource",
-        "eks:UntagResource"
+        "eks:UntagResource",
+        "eks:AssociateAccessPolicy",
+        "eks:DisassociateAccessPolicy",
+        "eks:DeleteAccessEntry"
       ],
       "Resource": "*",
       "Condition": {